vanitasvitae/openpgp-notes
1
0
Fork 0
mirror of https://codeberg.org/openpgp/notes.git synced 2024-11-23 08:02:05 +01:00
Code Issues Projects Releases Packages Wiki Activity

minor restructure

Browse source
This commit is contained in:
Heiko Schaefer 2023-10-24 13:01:05 +02:00
parent 03f8bf21c1
commit 6440318fcc
No known key found for this signature in database
GPG key ID: 4A849A1904CCBD7D
1 changed files with 16 additions and 16 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

32
book/source/06-certifications.md
View file

@ -18,22 +18,6 @@ In this chapter, we'll discuss signatures that apply to component keys and ident
Types of signatures in OpenPGP Types of signatures in OpenPGP
``` ```
## Types of signatures on components
There are two classes of components that signatures can apply to:
- Component keys (primary keys or subkeys).
- Identity components (User IDs or User attributes).
And there are two important scenarios that we will distinguish. Signatures on components can be issued by:
- The certificate's owner (in which case we call them *self-signatures*), or
- A third party (in which case we call them *third-party signatures*).
The same OpenPGP signature mechanism is used for all of these cases. So at first, we will discuss the general shape of OpenPGP signatures.
However, there are differences in some of the details of the signatures for these different cases, which we will then look into - as well as the semantics, which differ between these types of signatures. We'll discuss all of this in this chapter.
## Signatures in OpenPGP ## Signatures in OpenPGP
The term *signature* can have multiple meanings in the context of the OpenPGP specification: The term *signature* can have multiple meanings in the context of the OpenPGP specification:
@ -72,6 +56,22 @@ If Alice is certain that `Bob Baker <bob@example.com>` controls the key `0xB0B`,
Bob can then add this signature to his certificate. Bob can then add this signature to his certificate.
TODO: More WoT. TODO: More WoT.
##### Types of signatures on components
There are two classes of components that signatures can apply to:
- Component keys (primary keys or subkeys).
- Identity components (User IDs or User attributes).
And there are two important scenarios that we will distinguish. Signatures on components can be issued by:
- The certificate's owner (in which case we call them *self-signatures*), or
- A third party (in which case we call them *third-party signatures*).
The same OpenPGP signature mechanism is used for all of these cases. So at first, we will discuss the general shape of OpenPGP signatures.
However, there are differences in some of the details of the signatures for these different cases, which we will then look into - as well as the semantics, which differ between these types of signatures. We'll discuss all of this in this chapter.
##### Revocations ##### Revocations
One important class of self-signatures are revocations. One important class of self-signatures are revocations.