Re: [openpgp] key distribution by email strategy

Werner Koch <> Fri, 11 December 2020 20:05 UTC

Return-Path: <>
Received: from localhost (localhost []) by (Postfix) with ESMTP id 1979E3A0E9F for <>; Fri, 11 Dec 2020 12:05:13 -0800 (PST)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: -2.099
X-Spam-Status: No, score=-2.099 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: (amavisd-new); dkim=pass (1024-bit key)
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id jiCKf3s6oIHp for <>; Fri, 11 Dec 2020 12:05:11 -0800 (PST)
Received: from ( [IPv6:2001:aa8:fff1:100::22]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by (Postfix) with ESMTPS id 3E2BC3A0E39 for <>; Fri, 11 Dec 2020 12:05:10 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed;; s=20181017; h=Content-Type:MIME-Version:Message-ID:In-Reply-To:Date: References:Subject:Cc:To:From:Sender:Reply-To:Content-Transfer-Encoding: Content-ID:Content-Description:Resent-Date:Resent-From:Resent-Sender: Resent-To:Resent-Cc:Resent-Message-ID:List-Id:List-Help:List-Unsubscribe: List-Subscribe:List-Post:List-Owner:List-Archive; bh=3hdEo8ArG9/TFvfq+2C0HZUo2OJami6kTa5yv0E413E=; b=lK6wmimRBqwRnff7Z4FvBIqqMQ UECFoe/EymQyGJez2So7o/VTl6vMqjIe5BQMSA7iR8DTXxwWsWZ7WgCQP5kswqCd2NdyUMjX90lag bGYJIj+sMe2TPrthgcfICmFpLPmTBvl9vr7uY3osBAEizCGBUfygYFijkrkZlKG6D3co=;
Received: from uucp by with local-rmail (Exim 4.89 #1 (Debian)) id 1knof6-0008Ka-RG for <>; Fri, 11 Dec 2020 21:05:08 +0100
Received: from wk by with local (Exim 4.92 #5 (Debian)) id 1knobX-00046M-FB; Fri, 11 Dec 2020 21:01:27 +0100
From: Werner Koch <>
To: Heiko Schaefer <>
References: <> <> <>
Organisation: GnuPG e.V.
X-message-flag: Mails containing HTML will not be read! Please send only plain text.
Mail-Followup-To: Heiko Schaefer <>,
Date: Fri, 11 Dec 2020 21:01:20 +0100
In-Reply-To: <> (Heiko Schaefer's message of "Fri, 11 Dec 2020 13:22:12 +0100")
Message-ID: <>
User-Agent: Gnus/5.13 (Gnus v5.13)
MIME-Version: 1.0
Content-Type: multipart/signed; boundary="=Mitigation_MF_Mossad_FLETC_Rand_Corporation_Wackenhut_Mace_Delays=Lo"; micalg="pgp-sha256"; protocol="application/pgp-signature"
Archived-At: <>
Subject: Re: [openpgp] key distribution by email strategy
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Ongoing discussion of OpenPGP issues." <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Fri, 11 Dec 2020 20:05:13 -0000

On Fri, 11 Dec 2020 13:22, Heiko Schaefer said:

> The autocrypt standard is established, and quiet a few projects support
> it (

Autocrypt is bound to mail use cases and can't be used in other
environments.  Remember that mail is only one use-case; there are many
other important use cases.

Key discovery has never been in the scope of OpenPGP.  The standard
provided means to implement systems but does not enforce the use of one.
That limited scope worked very well over the last 23 years.

Noet that I do not say that such topics ares out of scope for this
mailing list; merely for the OpenPGP standard.  In fact, over all the
years this list has also been used as an implementers forum.



Die Gedanken sind frei.  Ausnahmen regelt ein Bundesgesetz.