Clarify well-formedness

also see: https://codeberg.org/openpgp/notes/pulls/108#issuecomment-1355448
2025-09-10 11:49:40 +02:00 · 2023-11-27 14:37:26 +01:00 · 2023-11-27 14:37:26 +01:00 · 33b0223073
commit 33b0223073
parent cb4f358a0b
1 changed files with 1 additions and 1 deletions
--- a/book/source/09-verification.md
+++ b/book/source/09-verification.md
@ -25,7 +25,7 @@ Put mathematically, the set of valid signatures is a subset of the set of correc

 The validity of a correct signature is additionally constrained by a number of conditions:

-* **Well-formedness**: Signature packets need to be well-formed, meaning they must contain the required signature subpackets in the proper subpacket area and must not contain unknown critical subpackets or unknown critical notations[^unknown-critical]. Some implementations additionally apply a policy that constrains accepted hash algorithms, cryptographic algorithms, and key strengths.
+* **Well-formedness**: Signature packets need to be well-formed. This means that they must contain suitable signature metadata (this includes: the required signature subpackets must be present in the proper subpacket area). The signature metadata must not contain unknown critical subpackets or unknown critical notations[^unknown-critical]. Some implementations additionally apply a policy that constrains accepted hash algorithms, cryptographic algorithms, and key strengths.
 * **Temporal validity**: Most signatures have a limited validity period, constrained by the signature creation- and expiration time.
 * **Qualification**: Furthermore, some signatures need to be *qualified* by other valid signatures in order to be considered valid. This is especially the case with signatures created by dedicated signing subkeys, where, in addition to the signature itself, the subkeys binding signature(s) must be verified.
 * **Revocation**: Lastly, signatures can be invalidated by revocations.