[prev in list] [next in list] [prev in thread] [next in thread]
List: gnupg-users
Subject: Re: Revocation certificate for sub key?
From: adrelanos <adrelanos () riseup ! net>
Date: 2013-12-14 17:01:28
Message-ID: 52AC8EE8.2080603 () riseup ! net
[Download RAW message or body]
>> This would be useful for offline master keys. Trusted persons could be
>> given the revocation certificate for sub keys and send it to key servers
>> when they suspect compromise. But should the sub key revocation
>> certificate get into the wrong hands due to compromise, the damage would
>> be limited.
> Since you still have your secure offline main key, you can revoke
> subkeys yourself... Or am I missing something?
Others may be able to do that faster.
That time advantage might result in much less damage when it comes to
important keys, such as linux distribution signing keys.
_______________________________________________
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic