Secrecy and user trust
Patrick O'Callaghan
pocallaghan at gmail.com
Wed Sep 3 18:42:47 UTC 2008
On Wed, 2008-09-03 at 10:30 -0400, Bill Davidsen wrote:
> hardest of all find a secure way to provide the public part of the
> signing key
The whole point about asymmetric encryption is that you don't need a
secure distribution channel. The worst that can happen is that some fake
public key gets distributed, which won't match the private key and hence
will be instantly detectable.
poc
More information about the fedora-list
mailing list