[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: encodings, character sets, general requirements
-----BEGIN PGP SIGNED MESSAGE-----
content-type: text/plain; charset=us-ascii
- Trust model must be a web (people want to choose whom they trust).
People must be able to choose whom they trust or consider
reliable roots (maybe with varying reliabilities).
The trust model should be a "constrained web", not the current PGP
Certificates of keys being used to sign other certificates should
spell out the "attributes" or "meanings" that the third party (or,
more correctly, the third party's key) is trusted to assert and/or
If you trust a so-called "root" key, you should be willing to sign a
certificate for your own personal use which asserts that fact.. in
other words, "you are your own root"...
-----BEGIN PGP SIGNATURE-----
-----END PGP SIGNATURE-----