Subj : Re: PGP question
To   : alterego
From : Warpslide
Date : Mon Jun 08 2020 11:19 am

On 08 Jun 2020, alterego said the following...
 
 al> No, no decoding, nor encryption involved. With PGP, you can "digitally
 al> sign" a piece of text, that somebody can verify with a public key.

Since PGP is inherently peer to peer, there's no central authority that
controls it.  You would need a directory or listing of other people's public
keys.

This is where the idea of a pgp key repository comes in.  Perhaps the most
famous is the one operated by mit at:

https://pgp.mit.edu

If you go to that site, you're able to submit your own public key & look up
the public keys of others.

You can then configure PGP clients to search one or more repositories if you
don't happen to have their public key locally.

Of course for this to work all parties involved would need to be using the
same repositor(y|ies).

If you didn't want to use a repository, you would then need to make sure each
client had each other's public key locally.


Jay

--- Mystic BBS v1.12 A45 2020/02/18 (Windows/32)
 * Origin: Northern Realms BBS | bbs.nrbbs.net | Binbrook, ON (21:3/110)

.