Add anchor, and clarify intended meaning of section

This commit is contained in:
Heiko Schaefer 2023-11-22 15:05:17 +01:00
parent 17d4894ee7
commit 886e8f5ff2
No known key found for this signature in database
GPG key ID: DAE9A9050FCCF1EB

View file

@ -161,12 +161,12 @@ Linking a User ID to an OpenPGP certificate
This signature is calculated over the primary key, User ID and the metadata of the signature packet. This signature is calculated over the primary key, User ID and the metadata of the signature packet.
(primary-metadata)=
### Adding metadata to the primary key ### Adding metadata to the primary key/certificate
The signatures that bind subkeys and identity components to a certificate serve two different purposes: Linking components to the certificate and adding metadata to a component. The signatures that bind subkeys and identity components to a certificate serve two different purposes: Linking components to the certificate and adding metadata to a component.
The primary key in a certificate doesn't need to be linked to the certificate. It acts as the anchor for linking, itself and thus doesn't require being linked. However, there is nevertheless a need to associate metadata with the primary key. The primary key in a certificate doesn't need to be linked to the certificate. It acts as the anchor for linking, itself and thus doesn't require being linked. However, there is nevertheless a need to associate metadata with the primary key, which typically applies to the certificate as a whole.
There are two mechanisms for adding metadata to the primary key: There are two mechanisms for adding metadata to the primary key: