[clue-tech] Some thoughts about GnuPG.
David L. Anselmi
anselmi at anselmi.us
Sat Sep 4 15:21:38 MDT 2010
OK, I should probably have said up front why you should care about using a grass roots PKI. (But
I'll try not to say too much or this will turn into a -talk thread.)
Eben Moglen gave a talk at DebConf. I've long thought that Google should not be the only email
provider, nor Microsoft the only OS provider, nor AT&T the only phone provider (though not in those
words so much).
Likewise, Verisign (and even Verisign and every other accredited company, including CAcert)
shouldn't be the only PKI provider.
So I need to start providing my own PKI for those who can use it. (And that's not really what I
thought when I suggested a key signing party but that's what's keeping me interested now.)
Here's Eben's DebConf talk, with Joey Hess's comments. (Dang I wish I had been there. That's Bdale
in the front row.)
http://joey.kitenet.net/blog/entry/DebConf10_report:_Eben_Moglen/
So I wonder how well we can make it invisible whether something is trusted through OpenPGP certs or
X.509?
Dave
More information about the clue-tech
mailing list