Hacker News new | past | comments | ask | show | jobs | submit login

Please just use pgp.

You need expiration, permissible purpose, revocation, identity, etc embedded into a ‘key’.

Pgp is really really good at doing these things and has been though the ringer on security. Yes pgp sucks at its original Purpose (encrypting email) but it’s excellent for signing things.




Is there a particular implementation of PGP that folks should use?


GPG is available nearly everywhere on every platform. If you're on OSX you can install MacGpg which provides a nice UI.




Join us for AI Startup School this June 16-17 in San Francisco!

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: