[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Sks-devel] nokeyserver annotation
From: |
Vincent Breitmoser |
Subject: |
Re: [Sks-devel] nokeyserver annotation |
Date: |
Sat, 31 Dec 2016 11:40:39 +0100 |
User-agent: |
NeoMutt/20161104 (1.7.1) |
> An invalid notation might not be rejected by a client (is it critical
> marked?). Is there a reference for this behavior in RFC and tested on
> various implementations?
I still don't understand. It's not the notation that is invalid, it's
the certificate itself. It's my key, as long as we don't assume that an
attacker can forge certificates for my key that check out
cryptographically (in which case we have other problems!), I hope every
implementation won't accept non-verifying self-certificates into its
keyring.
- V
Re: [Sks-devel] nokeyserver annotation, Kiss Gabor (Bitman), 2016/12/20
Re: [Sks-devel] nokeyserver annotation, Daniel Kahn Gillmor, 2016/12/20
Re: [Sks-devel] nokeyserver annotation, Kim Minh Kaplan, 2016/12/22