On Tuesday 28 July 2015 09:22:23 Neal H. Walfield wrote:
> Hi,
> 
> Did you consider user a proof-of-work scheme?  For instance, the user
> does a 1 week PoW, signs the result and attackes it to the key.  These
> would be refreshed about once a year.

Which problem do you propose to address with such a scheme? I can see the 
zombie key issue being addressed by this, but this issue can as easily be 
addressed by 1-year-key-expiration (where the PoW consists of extending the 
expiration date).

I don't see how a PoW scheme addresses the fake key issue. Someone who is 
motivated enough to create a fake key will most likely also be motivated 
enough to add a PoW (at least, for the first year).


Regards,
Ingo

Attachment: signature.asc
Description: This is a digitally signed message part.

_______________________________________________
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users

Reply via email to