[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Sks-devel] Verification of keys on upload and removal options
From: |
Douglas |
Subject: |
[Sks-devel] Verification of keys on upload and removal options |
Date: |
Wed, 23 Mar 2016 18:01:10 -0400 |
Hi all,
Traditionally key servers have not had any options for deleting keys, so over the years there ends up being a number of invalid keys where the owner no longer has the corresponding private key or has closed the email account tied to the key.
The problem of not being able to delete keys also contributes to the issue of keyserver based harassment or "doxing," where personal information and emails are uploaded without permission. Since the keyserver does not verify ownership of an email before accepting the key, anyone can create and upload a key for any email and include personal information in the name field.
One can also create and upload keys which contain a victim's username, legal name, phone number, address, and other personal information and upload the key to the keyserver. It would essentially be a permanent record for someone's personal information.
It doesn't benefit anyone to retain keys uploaded with malicious intent, so I believe it's worth discussing a mechanism for key removal due to abuse of the system.
Thank you.
- [Sks-devel] Verification of keys on upload and removal options,
Douglas <=
- Re: [Sks-devel] Verification of keys on upload and removal options, Christoph Egger, 2016/03/25
- Re: [Sks-devel] Verification of keys on upload and removal options, Andrew Gallagher, 2016/03/25
- Re: [Sks-devel] Verification of keys on upload and removal options, Malte, 2016/03/29
- Re: [Sks-devel] Verification of keys on upload and removal options, Robert J. Hansen, 2016/03/29
- Re: [Sks-devel] Verification of keys on upload and removal options, Malte, 2016/03/29
- Re: [Sks-devel] Verification of keys on upload and removal options, Robert J. Hansen, 2016/03/29
- Re: [Sks-devel] Verification of keys on upload and removal options, Malte, 2016/03/29
- Re: [Sks-devel] Verification of keys on upload and removal options, Christoph Egger, 2016/03/29
- Re: [Sks-devel] Verification of keys on upload and removal options, Lukas Martini, 2016/03/29
Re: [Sks-devel] Verification of keys on upload and removal options, Julien Sansonnens, 2016/03/25