vanitasvitae/openpgp-notes
1
0
Fork 0
mirror of https://codeberg.org/openpgp/notes.git synced 2024-11-22 23:52:05 +01:00
Code Issues Projects Releases Packages Wiki Activity

it seems confusing to imply that bob will necessarily distribute a third-party certification, this is only true some of the time

Browse source
This commit is contained in:
Heiko Schaefer 2023-11-25 15:43:24 +01:00
parent a3b5e263e3
commit 4b9c064a8b
No known key found for this signature in database
GPG key ID: DAE9A9050FCCF1EB
1 changed files with 1 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
book/source/08-signing_components.md
View file

@ -207,7 +207,7 @@ Third-party signatures in OpenPGP primarily encode authentication statements for
When a signer issues a certifying signature on an identity, it indicates a verified link between the identity and the certificate. That is, the signer vouches for the connection.
For example, Alice can certify Bob's User ID `Bob Baker <bob@example.com>` with his certificate `0xB0B`, by creating a certification signature that binds Bob's User ID and Bob's certificate. Bob then distributes Alice's certifying signature as part of his certificate.
For example, Alice can certify Bob's User ID `Bob Baker <bob@example.com>` with his certificate `0xB0B`, by creating a certification signature that binds Bob's User ID and Bob's certificate. Bob can then distribute Alice's certifying signature as part of his certificate.
Other users may or may not decide to rely on Alice's statement.