mirror of
https://codeberg.org/openpgp/notes.git
synced 2024-11-23 16:12:05 +01:00
ch4: clarify the primary key can't confer validity beyond its own
This commit is contained in:
parent
fd2469e0e4
commit
74710d804a
1 changed files with 2 additions and 0 deletions
|
@ -83,6 +83,8 @@ The "OpenPGP primary key" is a component key that serves a central role in an Op
|
||||||
- Its fingerprint is used as the unique identifier for the full OpenPGP certificate.
|
- Its fingerprint is used as the unique identifier for the full OpenPGP certificate.
|
||||||
- It is used for lifecycle operations, such as adding or invalidating subkeys or identities in a certificate.
|
- It is used for lifecycle operations, such as adding or invalidating subkeys or identities in a certificate.
|
||||||
|
|
||||||
|
The validity of the primary key limits its capacity to confer validity to other components. E.g.: The primary key cannot confer an expiration time beyond its own expiration to a subkey. It can also not confer validity to components after it has been revoked.
|
||||||
|
|
||||||
```{admonition} Terminology
|
```{admonition} Terminology
|
||||||
:class: note
|
:class: note
|
||||||
|
|
||||||
|
|
Loading…
Reference in a new issue