On 27/10/2019 10.25, Sam Tuke wrote: > As well as fetching the public key, it'd need access to a private key too. I > think the private key is considered the bigger problem, for various reasons.
The scheme that I am describing needs only public key on the server. Not sure why you would think otherwise. > There have been a few attempts addressing the needs of this complex use case. > AFAICS none have been successful, but I'm out of date. > See the (abandoned?) STEED project and their whitepaper: > https://g10code.com/steed.html. That is by g10code - the creator of GPG. > Disclaimer: I once worked for them. quick look at the link suggests that this is not the problem I am trying to solve. but thanks anyway for your input.
