Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Missing - key backup/escrow, verifiable trust (you can't just trust the first key sent to you for a specific email address), key revocation, and portability.

Solve too many of those problems and you've invented PKI...



Key backup - store it unencrypted on your own hard disk. The encryption/decryption is only for transport.

Verifiable trust - if it's a recipient you care about, you can phone them and ask if the key is correct.

Key revocation - easily done using email headers.

Portability - I proposed a portable system. Make it part of the email standard, just like the "Subject:" metadata.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: