vanitasvitae/openpgp-notes
1
0
Fork 0
mirror of https://codeberg.org/openpgp/notes.git synced 2024-11-23 08:02:05 +01:00
Code Issues Projects Releases Packages Wiki Activity

ch8: more introductory text

Browse source
This commit is contained in:
Heiko Schaefer 2023-10-27 01:08:57 +02:00
parent 33ad6fcd69
commit e2d3fabdc5
No known key found for this signature in database
GPG key ID: 4A849A1904CCBD7D
1 changed files with 6 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

6
book/source/08-signing_components.md
View file

@ -12,6 +12,12 @@ In this chapter, we'll consider OpenPGP signatures that apply to components. Tha
- Component keys (primary keys or subkeys), or
- Identity components (User IDs or User attributes).
This chapter adds a lot of detail to the material we discussed in the {ref}`certificates_chapter` chapter. Signatures on components are a crucial mechanism for forming OpenPGP certificates (which combine component keys and identities, via signatures on those components).
Additionally, signatures on components play a crucial role for authentication of identities. Mechanisms for decentralized authentication are one of OpenPGP's core strenghts, we'll look into how they work.
Finally, signatures on components are also a central mechanism for life-cycle management of OpenPGP certificates and their components. This includes defining or changing expiration dates, or issuing revocations, for certificates or their components.
## Self-signatures and third-party signatures
There are two important scenarios to distinguish: