Jump to content

This is the support site for Andrews & Arnold Ltd, a UK Internet provider. Information on these pages is generally for our customers but may be useful to others, enjoy!

PGP: Difference between revisions

← Older edit
Content deleted Content added
CecilWard (talk | contribs)
252 edits
m Trust: Minor cleanup
CecilWard (talk | contribs)
252 edits
 
Line 49: Line 49:
It is also possible to associate more names and email addresses with the same secret key, and revoke previous email address associations. This is handy if you use more than one email address, change email provider or even change your name as you can retain a consistent identity using the key. However, anyone counter signing your key only signs to say the association of name/email/etc with your key is valid and so would have to re-sign your key for other new people to trust it. Anyone who already trusts your key to represent you, would continue to do so.
It is also possible to associate more names and email addresses with the same secret key, and revoke previous email address associations. This is handy if you use more than one email address, change email provider or even change your name as you can retain a consistent identity using the key. However, anyone counter signing your key only signs to say the association of name/email/etc with your key is valid and so would have to re-sign your key for other new people to trust it. Anyone who already trusts your key to represent you, would continue to do so.


If you manage to expose your key, e.g. someone gets a copy and sees you passphrase, it is possible to revoke the key - this is a signed statement you load on key servers saying it is no longer valid. There is no real way to ensure all possible senders and recipients get this though, so take care with your key.
If you manage to expose your key, e.g. someone gets a copy and sees your passphrase, it is possible to revoke the key. This is a signed statement that you load on key servers saying that the key is no longer valid. There is no real way to ensure all possible senders and recipients get this though, so take care with your key.

You can set an expiry on a key. This helps if you think you may somehow expose the key to someone else. If you are confident in your own security principles, you could choose to have an non-expiring key. Expiring and changing keys can be inconvenient, but some people prefer to change keys every few years just to be sure no old key can possibly still be valid.


You can set an expiry on a key. This helps if you think you may somehow expose the key to someone else. If you are confident in your own security principles you could choose to have an non expiring key. Expiring and changing keys can be inconvenient, but some people prefer to change keys every few years just to be sure no old key can possibly still be valid.
==Should you sign all emails?==
==Should you sign all emails?==


Retrieved from "http://support.aa.net.uk/PGP"