Feature #6338: User-friendly keysigning that verifies that key belongs to the recipient
Improve monkeysign integration in Tails
Our initial integration of monkeysign is lacking in many ways (see parent ticket). We've evaluated GNOME keysign but it's not an alternative to replace monkeysign with it. Thus we should put more work into improving monkeysign's integration into Tails.
Before working on this, see #11240 that has updates about the future (or lack thereof) of monkeysign.
#6 Updated by Anonymous about 2 years ago
- Description updated (diff)
- Type of work changed from Wait to Research
- Starter set to Yes
In order to make this happen, we need to research how well monkeysign works in Tails or if there are any missing features or usecases. And collect the output on this ticket.
#7 Updated by sajolida about 2 years ago
My user story:
I've been using monkeysign in Tails successfully for all my key signing.
Whenever I sign a key, I get back to #11240 to copy the lenghtly command line in there. I have no feedback on the security of monkeysign when connecting to my server but I trust the monkeysign developer to not be silly and I think I checked that it does SSL as some point in the past.
I use monkeysign for that because I failed to used caff in the past and monkeysign worked for me. I don't use monkeysign for anything else (it does key verification using some QR code, right?) because I'm really used to extensive fingerprint verification, either on paper, business card, or screen and don't need anything else.