From 6440318fcc95b6d273a1f685f7f7aeb4d01727ad Mon Sep 17 00:00:00 2001 From: Heiko Schaefer Date: Tue, 24 Oct 2023 13:01:05 +0200 Subject: [PATCH] minor restructure --- book/source/06-certifications.md | 32 ++++++++++++++++---------------- 1 file changed, 16 insertions(+), 16 deletions(-) diff --git a/book/source/06-certifications.md b/book/source/06-certifications.md index db77ab0..ee61170 100644 --- a/book/source/06-certifications.md +++ b/book/source/06-certifications.md @@ -18,22 +18,6 @@ In this chapter, we'll discuss signatures that apply to component keys and ident Types of signatures in OpenPGP ``` -## Types of signatures on components - -There are two classes of components that signatures can apply to: - -- Component keys (primary keys or subkeys). -- Identity components (User IDs or User attributes). - -And there are two important scenarios that we will distinguish. Signatures on components can be issued by: - -- The certificate's owner (in which case we call them *self-signatures*), or -- A third party (in which case we call them *third-party signatures*). - -The same OpenPGP signature mechanism is used for all of these cases. So at first, we will discuss the general shape of OpenPGP signatures. - -However, there are differences in some of the details of the signatures for these different cases, which we will then look into - as well as the semantics, which differ between these types of signatures. We'll discuss all of this in this chapter. - ## Signatures in OpenPGP The term *signature* can have multiple meanings in the context of the OpenPGP specification: @@ -72,6 +56,22 @@ If Alice is certain that `Bob Baker ` controls the key `0xB0B`, Bob can then add this signature to his certificate. TODO: More WoT. +##### Types of signatures on components + +There are two classes of components that signatures can apply to: + +- Component keys (primary keys or subkeys). +- Identity components (User IDs or User attributes). + +And there are two important scenarios that we will distinguish. Signatures on components can be issued by: + +- The certificate's owner (in which case we call them *self-signatures*), or +- A third party (in which case we call them *third-party signatures*). + +The same OpenPGP signature mechanism is used for all of these cases. So at first, we will discuss the general shape of OpenPGP signatures. + +However, there are differences in some of the details of the signatures for these different cases, which we will then look into - as well as the semantics, which differ between these types of signatures. We'll discuss all of this in this chapter. + ##### Revocations One important class of self-signatures are revocations.