[OTR-dev] Suggestion: keep track of OTR keys in Pidgin
Greg Troxel
gdt at ir.bbn.com
Wed Feb 10 10:56:34 EST 2016
Ximin Luo <infinity0 at pwned.gg> writes:
> It is true that even this sort of tracking is quite basic though. A
> more complex idea would be to automatically verify keys via
> pre-existing verified keys, but this should really be part of a
> central contacts manager outside of OTR, and could take advantage of
> whatever secure protocols are available.
I have long thought that there should be a way to sign OTR keys with
OpenPGP keys, or perhaps to export/import OTR keys to an OpenPGP
implementation, so that one could have WoT validation. Of course we
are only talking about the long-term authentication keys here.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 180 bytes
Desc: not available
URL: <http://lists.cypherpunks.ca/pipermail/otr-dev/attachments/20160210/3eeea80d/attachment.sig>
More information about the OTR-dev
mailing list