mirror of
https://github.com/adulau/abstract-key-server.git
synced 2024-12-22 00:36:03 +00:00
Alexandre Dulaunoy
5a9af6c376
Format is the following in the datastore: - (k/v) k:<fingerprint> -> (armored pgp) - (set) n:<namespace> -> set of fingerprints - (set) un:<uid-name> -> set of fingerprints - (set) uc:<uid-name> -> set of fingerprints - (set) ue:<uid-name> -> set of fingerprints un -> name in the UID uc -> comment in the UID ue -> email in the UID un is lower case ue is normalized (white-spaces removed and lower case)
1 KiB
1 KiB
abstract-key-server (aks)
Abstract key server (aks) is a minimal PGP key server to support communities. aks is a kind of read-only OpenPGP key server which is updated by some core administrators of a community. Those core administrators can add other trusted aks server to provide lookup of other keys via their server.
This is a work-in-progress to solve specific problems in security and information sharing communities.
Goals
- Minimal parsing of PGP packets (to reduce complexity and software dependencies)
- New keys are added via a specific vetted process (or at the discretion of the aks operator)
- AKS can connect to other trusted list to query unknown keys and there is no reconciliation protocol (by design)
- Standard HKP interface with
addmethod disabled - Simple interface to filter out known malicious or rogue PGP keys
- Fast and reliable