Preston Maness ☭<p><span class="h-card" translate="no"><a href="https://mastodon.ml/@Xeniax" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>Xeniax</span></a></span> Totally nerdsniped :D I'd love to be a part of the study.</p><p>I don't think that <a href="https://tenforward.social/tags/KeyServers" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>KeyServers</span></a> are dead. I think they evolved into Verifying Key Servers (VKS), like the one run by a few folks from the OpenPGP ecosystem at <a href="https://keys.openpgp.org/about" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="">keys.openpgp.org/about</span><span class="invisible"></span></a> . More generally, I believe that <a href="https://tenforward.social/tags/PGP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PGP</span></a> / <a href="https://tenforward.social/tags/GPG" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>GPG</span></a> / <a href="https://tenforward.social/tags/OpenPGP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OpenPGP</span></a> retains important use-cases where accountability is prioritized, as contrasted with ecosystems (like <a href="https://tenforward.social/tags/Matrix" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Matrix</span></a>, <a href="https://tenforward.social/tags/SignalMessenger" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SignalMessenger</span></a>) where deniability (and Perfect Forward Secrecy generally) is prioritized. Further, PGP can still serve to bootstrap those other ecosystems by way of signature notations (see the <a href="https://tenforward.social/tags/KeyOxide" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>KeyOxide</span></a> project).</p><p>Ultimately, the needs of asynchronous and synchronous cryptographic systems are, at certain design points, mutually exclusive (in my amateur estimation, anyway). I don't think that implies that email encryption is somehow a dead-end or pointless. Email merely, by virtue of being an asynchronous protocol, cannot meaningfully offer PFS (or can it? Some smart people over at crypto.stackexchange.com seem to think there might be papers floating around that can get at it: <a href="https://crypto.stackexchange.com/questions/9268/is-asynchronous-perfect-forward-secrecy-possible" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">crypto.stackexchange.com/quest</span><span class="invisible">ions/9268/is-asynchronous-perfect-forward-secrecy-possible</span></a>).</p><p>To me, the killer feature of PGP is actually not encryption per se. It's certification, signatures, and authentication/authorization. I'm more concerned with "so-and-so definitely said/attested to this" than "i need to keep what so-and-so said strictly private/confidential forever and ever." What smaller countries like Croatia have done with <a href="https://tenforward.social/tags/PKI" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PKI</span></a> leaves me green with envy.</p>
Recent searches
No recent searches
Search options
Only available when logged in.
mindly.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
Mindly.Social is an English speaking, friendly Mastodon instance created for people who want to use their brains and their hearts to make social networking more social. 🧠💖
Administered by:
Server stats:
1.2Kactive users
mindly.social: About · Status · Profiles directory · Privacy policy
Mastodon: About · Get the app · Keyboard shortcuts · View source code · v4.3.7
#keyservers
0 posts · 0 participants · 0 posts today
xeniax ⏚<p><a href="https://mastodon.ml/tags/survey" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>survey</span></a> <a href="https://mastodon.ml/tags/keyservers" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>keyservers</span></a> <a href="https://mastodon.ml/tags/pgp" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>pgp</span></a> <a href="https://mastodon.ml/tags/encryption" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>encryption</span></a> </p><p>PART 3 OF THE KEYSERVER STUDY</p><p>(see Part 1 here: <a href="https://mastodon.ml/@Xeniax/114273355035626553" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">mastodon.ml/@Xeniax/1142733550</span><span class="invisible">35626553</span></a>)</p><p>❓QUESTION 3: WHY HAVE YOU STOPPED USING KEYSERVERS</p>
xeniax ⏚<p><a href="https://mastodon.ml/tags/survey" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>survey</span></a> <a href="https://mastodon.ml/tags/keyservers" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>keyservers</span></a> </p><p>🔒🔑 PART 2 of the Keyservers Study<br>(see part 1 here: <a href="https://mastodon.ml/@Xeniax/114273355035626553" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">mastodon.ml/@Xeniax/1142733550</span><span class="invisible">35626553</span></a>)</p><p>❓QUESTION 2: HOW DO YOU MAINLY USE KEYSERVERS?</p><p>✨✨ if you have used them in the past, you can also answer here!</p>
xeniax ⏚<p>Dear Fedi friends. I want to make a short <a href="https://mastodon.ml/tags/survey" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>survey</span></a> to understand who actively uses <a href="https://mastodon.ml/tags/keyservers" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>keyservers</span></a> today. I am interested in understanding the meaning and the value that people attribute to keyservers nowadays, and the shift in perceptions of email <a href="https://mastodon.ml/tags/encryption" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>encryption</span></a> 🔑🔒</p><p>📊 I will be making several polls (follow the thread!)</p><p>💌 I also would be happy if some of you agree to talk with me more in depth over an e2ee encrypted channel of your choice, no need to make a call, just messages are enough</p><p>👾 Feel free to share the polls and reach out in comments if you can and want to be part of this study.</p><p>👩🏽🎓 If this ever leads to any kind of publication, I will be following the standard ethical protocol adopted in the academic research community, which is to 1. ask informed consent for quoting; 2. quoting anonymously by default, unless the person wants to be named and 3. right to withdraw from the study even after responding to the questions</p><p>QUESTION 1: DO YOU USE KEYSERVERS?</p>
PGPkeys EU<p>(New blog) The State of the Keyservers in 2024</p><p>“In the two and a half years since the sks-keyservers.net shutdown in June 2021, the concept of <a href="https://infosec.exchange/tags/OpenPGP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OpenPGP</span></a> <a href="https://infosec.exchange/tags/keyservers" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>keyservers</span></a> has been called into question. However, keyservers still provide a vital service to the OpenPGP ecosystem. <br>…<br>OpenPGP is one of only two widely-used cryptography standards to include a full Public Key Infrastructure”</p><p><a href="https://blog.pgpkeys.eu/state-keyservers-2024.html" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">blog.pgpkeys.eu/state-keyserve</span><span class="invisible">rs-2024.html</span></a></p>
Norman Wilson<p>TIL the protocol everyone uses for <a href="https://mstdn.ca/tags/OpenPGP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OpenPGP</span></a> <a href="https://mstdn.ca/tags/keyservers" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>keyservers</span></a> appears to be documented only in an Internet Draft that expired about 20 years ago. Why did it never become an RFC if not an STD? Is it hiding in some hard-to-find RFC, or more-stably documented in some non-IETF place?</p>
ExploreLive feeds
Mastodon is the best way to keep up with what's happening.
Follow anyone across the fediverse and see it all in chronological order. No algorithms, ads, or clickbait in sight.
Create accountLoginDrag & drop to upload