Keysigning @ CFP2003

Jeroen van Gelderen jeroen at vangelderen.org
Tue Mar 25 00:22:04 EST 2003 

On Monday, Mar 24, 2003, at 22:32 US/Eastern, bear wrote:
> On Mon, 24 Mar 2003, Jeroen C. van Gelderen wrote:
>
>> It's rather efficient if you want to sign a large number of keys of
>> people you mostly do not know personally.
>
> Right, but remember that knowing people personally was supposed
> to be part of the point of vouching for their identity to others.

Not that I heard of. I always understood that I should be 'convinced' 
of the identity and willing to state that to others.

Knowing someone personally is very nice and gives you rather a lot of 
assurance that their identity is being used consistently and that 
others know the person by the same identity. (It is for precisely that 
reason that I have signed a few keys for people who use an alias.)

Sometimes however you have the choice between a 'weaker' form of 
certification and no certification at all. I prefer the former because 
it increases the chances of the WoT being useful. Key signing parties' 
reliance on passports are a case in point. In general passports are a 
reasonable indication of identity.

> "I know this guy.  We spent a couple years working on X together."
> is different in kind from "I met this guy once in my life, and he
> had a driver license that said his name was mike."

Yes. But PGP doesn't mandate either interpretation. That is what you 
use your trust knobs for: you decide on a per-user basis how 
trustworthy an identity certification from that user is. The redundancy 
of a well-connected WoT then helps you a bit in eliminating simple 
errors.

Cheers,
Jeroen
-- 
Jeroen C. van Gelderen - jeroen at vangelderen.org

                 The python
            has, and I fib no fibs,
              318 pairs of ribs.
       In stating this I place reliance
   On a séance with one who died for science.
     This figure is sworn to and attested;
     He counted them while being digested.
             -- Ogden Nash


---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at wasabisystems.com

More information about the cryptography mailing list