undefined | Better HN

0 pointsfehrnstr6y ago0 comments

Just signing with a private key isn't a guarantor of anything other than that if you trust that the person with the key is who they say they are, then the actual content is from them. But that would require a massively large web of trust in itself: that all the private keys would be trusted. And if you only let in private keys that you explicitly trusted, then it's very likely you could end up with an echo chamber

0 comments

arpa6y ago

good point, but we already have the PKI in place, and use it for SSL.

j / k navigate · click thread line to collapse

0 pointsfehrnstr6y ago0 comments

0 comments

arpa6y ago

good point, but we already have the PKI in place, and use it for SSL.

j / k navigate · click thread line to collapse