Keysigning: Difference between revisions
From HacDC Wiki
(New page: == Intro == * You have a private key and a public key, which you generate (your keypair). * People use your public key to send you encrypted messages that only you can open via the magic ...) |
(→Intro) |
||
Line 9: | Line 9: | ||
* Now they can sign the key and send the key back to the keyserver. | * Now they can sign the key and send the key back to the keyserver. | ||
* Now people can see that you believe that key to be valid, which improves the chances of it being a valid key! (web of trust) | * Now people can see that you believe that key to be valid, which improves the chances of it being a valid key! (web of trust) | ||
* Now you're all set, but you also want to... | |||
** Generate a revokation certificate in case you lose your passphrase or your key is comprimised! | |||
Links: | Links: | ||
[http://commandline.org.uk/command-line/ten-steps-for-attending-a-keysigning-party/ Keysigning commands] | * [http://commandline.org.uk/command-line/ten-steps-for-attending-a-keysigning-party/ Keysigning commands] | ||
[http://www.cryptnet.net/fdp/crypto/keysigning_party/en/keysigning_party.html#overview Keysigning HOWTO] | * [http://www.cryptnet.net/fdp/crypto/keysigning_party/en/keysigning_party.html#overview Keysigning HOWTO] |
Revision as of 22:17, 10 September 2009
Intro
- You have a private key and a public key, which you generate (your keypair).
- People use your public key to send you encrypted messages that only you can open via the magic of crypto!
- You decrypt these messages with your private key, which only you have access to.
- But first, you must share your public key, either directly or by uploading it to a keyserver.
- If it's on a keyserver, they must download it from the keyserver.
- If it was a file, they can import it manually.
- Now they can sign the key and send the key back to the keyserver.
- Now people can see that you believe that key to be valid, which improves the chances of it being a valid key! (web of trust)
- Now you're all set, but you also want to...
- Generate a revokation certificate in case you lose your passphrase or your key is comprimised!
Links: