Mirrors
/
open-keychain
mirror of https://github.com/open-keychain/open-keychain.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Updated OpenPGP Security (markdown)

Dominik Schürmann 2015-09-29 11:15:30 +02:00
parent 4101e627f9
commit a7ec2d8687
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
OpenPGP-Security.md

@ -35,7 +35,7 @@ Anyone can upload keys with User IDs containing the email and names of other per
Thus, expiry dates are no valid fix for a much bigger problem that lies in the way OpenPGP keyservers operate currently. Thus, expiry dates are no valid fix for a much bigger problem that lies in the way OpenPGP keyservers operate currently.
* In general, OpenPGP keys need to be validated through other channels than keyservers to rely on them. * In general, OpenPGP keys need to be validated through other channels than keyservers to rely on them.
#### Arguments for expiry #### Arguments in favor of expiry
from http://blog.josefsson.org/2014/08/26/the-case-for-short-openpgp-key-validity-periods/ (detailed arguments in the blog) from http://blog.josefsson.org/2014/08/26/the-case-for-short-openpgp-key-validity-periods/ (detailed arguments in the blog)
> 1. I dont trust myself to keep track of a private key (or revocation cert) for 50 years. > 1. I dont trust myself to keep track of a private key (or revocation cert) for 50 years.
> 2. I want people to notice my revocation certificate as quickly as possible. > 2. I want people to notice my revocation certificate as quickly as possible.