[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Sks-devel] Verification of keys on upload and removal options
|
From: |
Robert J. Hansen |
|
Subject: |
Re: [Sks-devel] Verification of keys on upload and removal options |
|
Date: |
Tue, 29 Mar 2016 05:41:53 -0400 |
|
User-agent: |
Mozilla/5.0 (Windows NT 10.0; WOW64; rv:38.0) Gecko/20100101 Thunderbird/38.6.0 |
>> 1. What criteria should be met before a key is removed?
>
> Owner of private key or owner of UID/email address requests it.
So far, so good.
>> 2. Who decides that the criteria have been met?
>
> The keyserver operator the request is sent to.
Going off the rails.
>> 3. How are malicious removals prevented?
>
> If owner of private key and owner of UID/email address disagree, the key
> stays
> off the servers. If they agree there should be no malicious removal.
Gone completely.
If a keyserver operator can decide that "the owner of this certificate
has requested its removal", how can the certificate owner's wish that it
NOT be removed be honored? You're giving keyserver operators carte
blanche to remove certificates at will -- and that's a level of
authority they *mustn't* possess.
Re: [Sks-devel] Verification of keys on upload and removal options, Julien Sansonnens, 2016/03/25