Page MenuHomePhabricator

Add OpenPGP-compatible Web of Trust Signature Verification to Karen's Hasher
Open, WishlistPublic

Description

From Web of Trust (wikipedia)

In cryptography, a web of trust is a concept used in PGP, GnuPG, and other OpenPGP-compatible systems to establish the authenticity of the binding between a public key and its owner. Its decentralized trust model is an alternative to the centralized trust model of a public key infrastructure (PKI), which relies exclusively on a certificate authority (or a hierarchy of such). As with computer networks, there are many independent webs of trust, and any user (through their identity certificate) can be a part of, and a link between, multiple webs.

From Tails: Verify using OpenPGP

Verifying using OpenPGP but without authenticating our signing key through the OpenPGP Web of Trust is equivalent in terms of security to verifying using our browser extension or BitTorrent because it relies on downloading a genuine signing key from our website.

Event Timeline

Joe created this task.Jan 21 2018, 5:49 PM
Joe created this object in space S5 Public.
Joe created this object with visibility "Public (No Login Required)".
Joe renamed this task from Add OpenPGP-compatible Web of Trust Signature Verification to Add OpenPGP-compatible Web of Trust Signature Verification to Karen's Hasher.
Joe updated the task description. (Show Details)Jan 21 2018, 6:08 PM