On Sep 6, 2013 9:10 PM, "Ted Lemon" <ted.lemon@xxxxxxxxxxx> wrote:
>
> On Sep 6, 2013, at 8:21 PM, Melinda Shore <melinda.shore@xxxxxxxxx> wrote:
> > when you vouch for someone's identity - in an authoritative
> > trust system - you're also vouching for the authenticity of
> > their transactions.
>
> This is what I mean by "a high bar." Signing someone's PGP key should mean "I know this person as X," not "this person is X."
>
Dilution of trust is a problem with PGP. "I know this person as X" is way too lax if you want the system to scale.
Scott