sks-devel
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Sks-devel] "SKS is effectively running as end-of-life software at t

From: Kristian Fiskerstrand
Subject: Re: [Sks-devel] "SKS is effectively running as end-of-life software at this point"?
Date: Thu, 7 Feb 2019 23:15:18 +0100
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101 Thunderbird/60.5.0 
On 2/6/19 8:28 PM, Robert J. Hansen wrote:
> What we don't have is *consensus* -- not only among ourselves, but in
> the larger community.

The current discussions we're having (e.g during OpenPGP email summit in
brussels in october and lately on FOSDEM last weekend) is eventually not
storing UIDs at all on the keyservers, but require the user to do key
discovery through WKD, directly on a website or the like. This still
allows using keyservers to distribute revocation certificates and
updates to subkeys etc, but not as a discovery mechanism.

Pool-wise it'd be setting up a separate keyserver network that  will
gossip with the existing network for a time, with separate pool for the
with-uid and without-uid servers, before the full switch is done...

The new network would be running on software replacing SKS, using more
suited database backend that and multi-threaded implementation. The
current disagreement are really with regards to whether this should be
"validating keyservers" or not, and how such servers could interact with
non-validating ones.

-- 
----------------------------
Kristian Fiskerstrand
Blog: https://blog.sumptuouscapital.com
Twitter: @krifisk
----------------------------
Public OpenPGP keyblock at hkp://pool.sks-keyservers.net
fpr:94CB AFDD 3034 5109 5618 35AA 0B7F 8B60 E3ED FAE3
----------------------------
"A committee is a group that keeps minutes and loses hours."
(Milton Berle)
reply via email to
[Prev in Thread] Current Thread [Next in Thread]