[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Sks-devel] Fwd: Re: Fwd: Re: Unde(r)served HKPS [was: Underserved a
|
From: |
Kristian Fiskerstrand |
|
Subject: |
Re: [Sks-devel] Fwd: Re: Fwd: Re: Unde(r)served HKPS [was: Underserved areas?] |
|
Date: |
Sun, 14 Jan 2018 21:23:19 +0100 |
|
User-agent: |
Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.5.2 |
On 01/14/2018 07:43 PM, Heiko Richter wrote:
> I bet the private key of "Kristian-CA" is on a system that is
> permanently connected to the internet and as soon as that key gets lost
> *all* GnuPG installations can't be trusted to do secure HKPS because
> some brainbug who didn't know the first thing about security hardcoded
> that certificate into the software.
To make sure this isn't un-challenged in the archives, the secret key
never touches an online system, all operations are done on airgapped setup.
--
----------------------------
Kristian Fiskerstrand
Blog: https://blog.sumptuouscapital.com
Twitter: @krifisk
----------------------------
Public OpenPGP keyblock at hkp://pool.sks-keyservers.net
fpr:94CB AFDD 3034 5109 5618 35AA 0B7F 8B60 E3ED FAE3
----------------------------
Qui audet vincit
Who dares wins
signature.asc
Description: OpenPGP digital signature