Re: [Sks-devel] Analyzing key server data

sks-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Sks-devel] Analyzing key server data

From:	Daniel Kahn Gillmor
Subject:	Re: [Sks-devel] Analyzing key server data
Date:	Sun, 22 Mar 2015 16:50:28 -0500
User-agent:	Notmuch/0.18.2 (http://notmuchmail.org) Emacs/24.4.1 (x86_64-pc-linux-gnu)

On Sun 2015-03-22 10:33:01 -0500, Daniel Roesler wrote:
> I was under the impression that SKS verified signature packets both
> during upload and during gossip.

SKS does no cryptographic verification. :(  Even if it were to start
doing verification, it's not clear how that would work with
certifications from keys it doesn't know about.  And the introduction of
cryptographic verification would segment the SKS keyserver network into
those that do verification and those that do not; it's like applying a
filter -- it either needs to be done on all SKS instances or none of
them :/

    --dkg

[Prev in Thread]

Current Thread

[Next in Thread]

[Sks-devel] Analyzing key server data, Hanno Böck, 2015/03/22
- Re: [Sks-devel] Analyzing key server data, Daniel Roesler, 2015/03/22
  - Re: [Sks-devel] Analyzing key server data, Daniel Kahn Gillmor <=

Prev by Date: Re: [Sks-devel] Analyzing key server data
Next by Date: [Sks-devel] seeking peers for sks.b4ckbone.de
Previous by thread: Re: [Sks-devel] Analyzing key server data
Next by thread: [Sks-devel] seeking peers for sks.b4ckbone.de
Index(es):
- Date
- Thread