Il 07/12/2016 00:27, Andrew Gallagher ha scritto:
> I don't see any reason why it couldn't be done in principle - anyone who
> wants could set up an "authority" that produces a regular, signed list of all
> the certificates it currently trusts at each point in time. The trick is a)
> making sur
I don't see any reason why it couldn't be done in principle - anyone who wants
could set up an "authority" that produces a regular, signed list of all the
certificates it currently trusts at each point in time. The trick is a) making
sure that revocations get submitted to the authority in a time
Il 06/12/2016 23:14, Andrew Gallagher ha scritto:
>> That could actually reduce trust in any PGP signature, unless there's a
>> way to timestamp 'something' that says "as of 'now' this key have not
>> been revoked". Ideally that attestation should be included with the
>> signature itself
> So, es
So, essentially OCSP?
Andrew Gallagher
> On 6 Dec 2016, at 21:42, NdK wrote:
>
> That could actually reduce trust in any PGP signature, unless there's a
> way to timestamp 'something' that says "as of 'now' this key have not
> been revoked". Ideally that attestation should be included with the
Il 06/12/2016 12:30, Roman Zeyde ha scritto:
> You can also use OpenTimestamps service as described here:
> https://petertodd.org/2016/opentimestamps-announcement
Interesting!
To remain on-topic, I'd like to take the "footnote 3":
-8<--
An interesting nuance to this is someone who has stolen a PGP
On 06/12/16 15:53, Stephan Beck wrote:
> [...], and use it as in
> gpg2 --no-default-keyring --secret-keyring file --try-secret-key
> [NAME=aspecificlongKeyID | fingerprint] --decrypt
> any_signedANDencrypted_message.txt.gpg ?
> Would that work?
From the GnuPG 2.1 man page:
--secret-keyrin
Carola Grunwald:
> Peter Lebbing wrote:
>> On 25/11/16 00:03, Carola Grunwald wrote:
[...]
>> An option --only-try-secret would solve both (your software
>> would know which to try for a given nym account), but such an option is
>> not available. You could try to make the case that such an opti
You can also use OpenTimestamps service as described here:
https://petertodd.org/2016/opentimestamps-announcement
On Mon, Dec 5, 2016 at 2:11 PM, Bertram Scharpf
wrote:
> On Thursday, 01. Dec 2016, 19:59:15 -0800, Schlacta, Christ wrote:
> > On Dec 1, 2016 7:43 PM, "Bertram Scharpf"
> wrote:
>
