Suggestion: Coporate keyrings.
Adrian 'Dagurashibanipal' von Bidder
avbidder@fortytwo.ch
Mon May 13 09:08:01 2002
--=-cEOtyf3muGLlLDVzIipG
Content-Type: text/plain
Content-Transfer-Encoding: quoted-printable
On Sun, 2002-05-12 at 09:56, Brenno J.S.A.A.F. de Winter wrote:
> My suggestion is following: Let's build a system that supports corporate
> keyrings. An administrator can verify the keys and set a trust. The
> local GnuPG could access that keylist and rely on it's trust. Such a
> thing would be a setting in GnuPG. GnuPG communicates with the
[...]
Why not have a corporate key. The admin signs the keys he has verified,
the user trusts this corporate key signing key, and so automatically he
trusts all keys in the corporation.
IMHO there is no difference in usability if the setting has to be made
to trust the key or to trust a special keyring. But for the first the
infrastructure is already there.
cheers
-- vbi
--=20
I sign e-mail using OpenPGP (rfc2440) compliant software.
--=-cEOtyf3muGLlLDVzIipG
Content-Type: application/pgp-signature; name=signature.asc
Content-Description: This is a digitally signed message part
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.7 (GNU/Linux)
iD8DBQA832aJwj49sl5Lcx8RAuVkAJkBeFAteaKX+gHwCl6N4sZF7Ngp4wCfa7GM
NKG1WKpCkz4fqrBcQYlbbG0=
=+cea
-----END PGP SIGNATURE-----
--=-cEOtyf3muGLlLDVzIipG--