IETF Logo Mail Archive

Re: [75attendees] No PGP Key Signing session??

Henrik Nordstrom <henrik@henriknordstrom.net> Tue, 28 July 2009 09:45 UTC

Return-Path: <henrik@henriknordstrom.net>
X-Original-To: 75attendees@core3.amsl.com
Delivered-To: 75attendees@core3.amsl.com
Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id DA0F33A69C8 for <75attendees@core3.amsl.com>; Tue, 28 Jul 2009 02:45:43 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.002
X-Spam-Level:
X-Spam-Status: No, score=-6.002 tagged_above=-999 required=5 tests=[AWL=-3.403, BAYES_00=-2.599]
Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id nfoVDdfA1zjY for <75attendees@core3.amsl.com>; Tue, 28 Jul 2009 02:45:43 -0700 (PDT)
Received: from vps1.henriknordstrom.net (vps1.henriknordstrom.net [195.20.207.177]) by core3.amsl.com (Postfix) with ESMTP id DA08A3A6CFB for <75attendees@ietf.org>; Tue, 28 Jul 2009 02:45:42 -0700 (PDT)
Received: from henriknordstrom.net (183.159.216.81.static.tb.siw.siwnet.net [81.216.159.183]) by vps1.henriknordstrom.net (8.14.2/8.14.2/Debian-2build1) with ESMTP id n6S9hgIp001944; Tue, 28 Jul 2009 09:43:42 GMT
Received: from [127.0.0.1] (localhost [127.0.0.1]) by henriknordstrom.net (8.12.11.20060308/8.12.8) with ESMTP id n6S9hehM027262; Tue, 28 Jul 2009 11:43:40 +0200
From: Henrik Nordstrom <henrik@henriknordstrom.net>
To: Iljitsch van Beijnum <iljitsch@muada.com>
In-Reply-To: <4B4DFB71-0170-4E3B-8E6C-B9D285DF237F@muada.com>
References: <87prblgxjn.fsf@tower.fukt.bsnet.se> <4B4DFB71-0170-4E3B-8E6C-B9D285DF237F@muada.com>
Content-Type: text/plain
Date: Tue, 28 Jul 2009 11:43:43 +0200
Message-Id: <1248774223.31403.66.camel@henriklaptop.lan>
Mime-Version: 1.0
X-Mailer: Evolution 2.26.3 (2.26.3-1.fc11)
Content-Transfer-Encoding: 7bit
X-Virus-Scanned: ClamAV 0.94.2/9623/Tue Jul 28 02:39:48 2009 on henriknordstrom.net
X-Virus-Status: Clean
X-Greylist: Sender IP whitelisted, not delayed by milter-greylist-3.0 (vps1.henriknordstrom.net [195.20.207.177]); Tue, 28 Jul 2009 09:43:43 +0000 (UTC)
Cc: 75attendees@ietf.org
Subject: Re: [75attendees] No PGP Key Signing session??
X-BeenThere: 75attendees@ietf.org
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: <75attendees.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/listinfo/75attendees>, <mailto:75attendees-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/75attendees>
List-Post: <mailto:75attendees@ietf.org>
List-Help: <mailto:75attendees-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/75attendees>, <mailto:75attendees-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 28 Jul 2009 09:45:43 -0000

tis 2009-07-28 klockan 09:22 +0200 skrev Iljitsch van Beijnum:
> On 28 jul 2009, at 7:57, Teddy Hogeborn wrote:
> 
> > I am very surprised to NOT see a PGP signing session on the agenda for
> > IETF 75 .  Is there an unofficial one planned outside the agenda?
> 
> What I understand is that there is no checking of government IDs at  
> theses IETF PGP signing sessions. That doesn't seem very useful to me...

OpenPGP does not enforce a specific signing policy. The policy on how
you verify the identity of the entity having of the key identities you
sign is basically up to you to define, just as it is you who decide and
accept to sign the key identities in question. Some have ID policies,
some have other policies.

If you want others to trust your signatures it's recommended you have a
reasonably clear policy defined and that you communicate this policy via
suitable means. To help in this the OpenPGP signatures includes an
option to indicate a location where one can look up the policy you used
when making that signature.

Regards
Henrik

v2.23.0 | Report a Bug | By Email