ch4: Add new certificate diagram

This commit is contained in:
Heiko Schaefer 2023-10-03 14:58:01 +02:00
parent c19d77e0c0
commit 7c94b45ea8
No known key found for this signature in database
GPG key ID: 4A849A1904CCBD7D

View file

@ -30,7 +30,14 @@ An OpenPGP certificate (or "OpenPGP key") is a collection of an arbitrary number
All elements of an OpenPGP certificate are structured around one central element: the *OpenPGP primary key*. The primary key acts as a personal CA for the key's owner: It can make cryptographic statements about subkeys, identities, expiration times, revocation, ... All elements of an OpenPGP certificate are structured around one central element: the *OpenPGP primary key*. The primary key acts as a personal CA for the key's owner: It can make cryptographic statements about subkeys, identities, expiration times, revocation, ...
Note that OpenPGP certificates are typically long-lived and may be changed (typically by their owner), over time. Components can be added and invalidated, over the lifetime of a certificate ```{figure} diag/OpenPGP\ Certificate.svg
An OpenPGP certificate
```
```{note}
OpenPGP certificates are typically long-lived and may be changed (typically by their owner), over time. Components can be added and invalidated, over the lifetime of a certificate
```
### OpenPGP component keys ### OpenPGP component keys