On 14/08/2019 12:09, Andrew Gallagher wrote: > Indeed, but that condition is fundamentally incompatible with > decentralised reconciliation - because deletion without permissions > management is an open door, and permissions have to be enforced by an > authority.
Hmmmm.... the authority could just be the primary key that the third-party signatures are over. I'm not talking about the current SKS keyserver network, but some still-to-be-created federated synchronizing service. That authority could also authorize no longer sharing a particular third party signature, I think. It might still circulate in the federated network, but any time it rears its head again it could get ignored by the revoked authorization (or more: authorization to revoke). "Ignoring" might just mean not offering it to clients even though it's still part of the federation for technical purposes. There's a lot of chance for misunderstandings here. I started writing something less ambiguous and stopped due to the amount of work :-). Cheers, Peter. -- I use the GNU Privacy Guard (GnuPG) in combination with Enigmail. You can send me encrypted mail if you want some privacy. My key is available at <http://digitalbrains.com/2012/openpgp-key-peter>
signature.asc
Description: OpenPGP digital signature
_______________________________________________ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
