[jdev] JEP-0027 (OpenPGP) implementation question
Justin Karneges
justin-keyword-jabber.093179 at affinix.com
Sat Mar 4 17:08:55 CST 2006
On Saturday 04 March 2006 14:19, Michal Vaner (Vorner) wrote:
> the point with PGP is that user checks and signs the key (if he trusts it).
> Therefore, key exchange can not happen automatically, since it would break
> one of the main idea of PGP, that user knows who he is encrypting to.
With that in mind, another way to think about JEP-27 is that it is meant for
people who have already traded PGP public keys and put trust in them. For
these existing users of PGP, secure chat "just works".
Now, if one or both parties were using Jabber first and have no idea what PGP
is, things get more tricky.
-Justin
More information about the JDev
mailing list