Keysigning: Difference between revisions

Revision as of 22:17, 10 September 2009

You have a private key and a public key, which you generate (your keypair).
People use your public key to send you encrypted messages that only you can open via the magic of crypto!
You decrypt these messages with your private key, which only you have access to.
But first, you must share your public key, either directly or by uploading it to a keyserver.
If it's on a keyserver, they must download it from the keyserver.
If it was a file, they can import it manually.
Now they can sign the key and send the key back to the keyserver.
Now people can see that you believe that key to be valid, which improves the chances of it being a valid key! (web of trust)
Now you're all set, but you also want to...
- Generate a revokation certificate in case you lose your passphrase or your key is comprimised!

Links:

@@ Line 9: / Line 9: @@
 * Now they can sign the key and send the key back to the keyserver.
 * Now people can see that you believe that key to be valid, which improves the chances of it being a valid key! (web of trust)
+* Now you're all set, but you also want to...
+** Generate a revokation certificate in case you lose your passphrase or your key is comprimised!
 Links:
-[http://commandline.org.uk/command-line/ten-steps-for-attending-a-keysigning-party/ Keysigning commands]
+* [http://commandline.org.uk/command-line/ten-steps-for-attending-a-keysigning-party/ Keysigning commands]
-[http://www.cryptnet.net/fdp/crypto/keysigning_party/en/keysigning_party.html#overview Keysigning HOWTO]
+* [http://www.cryptnet.net/fdp/crypto/keysigning_party/en/keysigning_party.html#overview Keysigning HOWTO]