From bec23c73f79a646c36d42a5f5f49b2df9c06b60f Mon Sep 17 00:00:00 2001 From: "Tammi L. Coles" Date: Thu, 19 Oct 2023 19:16:11 +0200 Subject: [PATCH] edit key flags in part --- book/source/04-certificates.md | 10 +++++++--- 1 file changed, 7 insertions(+), 3 deletions(-) diff --git a/book/source/04-certificates.md b/book/source/04-certificates.md index 795a741..9b8eff3 100644 --- a/book/source/04-certificates.md +++ b/book/source/04-certificates.md @@ -108,21 +108,25 @@ Subkeys have the same structural attributes as the primary key but fulfill a dif OpenPGP certificates can contain multiple subkeys. ``` -### Key flags: defining which operations a component key can perform +#### Defining operational capabilities with Key Flags ```{admonition} Warning Let's decide whether the capitalization of F is necessary. ``` -Each component key has a set of ["Key Flags"](https://www.ietf.org/archive/id/draft-ietf-openpgp-crypto-refresh-10.html#key-flags) that specify which operations that key can perform. +Each component key has a set of ["Key Flags"](https://www.ietf.org/archive/id/draft-ietf-openpgp-crypto-refresh-10.html#key-flags) that delineate the operations a key can perform. -The commonly used key flags are: +Commonly used key flags are: - **C**ertification (issuing third-party certifications) - **S**igning (signing data) - **E**ncryption (encrypting data) - **A**uthentication (commonly used for OpenPGP authentication) +```{admonition} Warning +Accessibility. Is the bolding of C, S, E, A compatible with screenreaders? Is it worth the effort? +``` + By convention, only the primary key is allowed to perform "certification" operations. All other operations can be configured on either the primary key or a subkey. ```{note}