Re: DID Method utilizing PGP/GPG keyservers for seamless on-boarding from Christopher Allen on 2024-12-14 (public-did-wg@w3.org from December 2024)

From: Christopher Allen <ChristopherA@lifewithalacrity.com>
Date: Fri, 13 Dec 2024 18:46:41 -0800
To: Filip Kolarik <filip26@gmail.com>
Cc: Aaron Goldman <goldmanaaron@gmail.com>, public-did-wg@w3.org
Message-ID: <CACrqygDwm+Bn6-7EHQ0-77YtGf=aSY_FgZ8Er_mTr6D-0JM-=A@mail.gmail.com>

On Fri, Dec 13, 2024 at 3:24 PM Filip Kolarik <filip26@gmail.com> wrote:

> I initially thought the key distinction lies in how they are used. SSH for
> authentication and remote access, and GPG for encryption
> and signing.

You correct that SSH doesn’t support encryption, but RAGE does, has current
best practices, and can optionally use ssh keys to encrypt:
https://github.com/str4d/rage

I personally practice key separation so don’t  use ssh keys for encryption,
and use their native keys instead. However this practice is cumbersome and
is one of the things that a did document could help with.

— Christopher Allen

>

Received on Saturday, 14 December 2024 02:46:56 UTC