ch4: local user ids

2025-09-09 11:19:41 +02:00 · 2023-11-28 18:44:56 +01:00 · 2023-11-28 18:44:56 +01:00 · ff50c50460
commit ff50c50460
parent 46a0429b4d
1 changed files with 3 additions and 2 deletions
--- a/book/source/04-certificates.md
+++ b/book/source/04-certificates.md
@ -581,13 +581,14 @@ So, there is some tension between the goals of
 - privacy related goals (also [see above](email-lookup), in the comparison of email-based certificate lookup mechanisms, which also touches on this theme).

 (unbound_user_ids)=
-### Adding unbound User IDs to a certificate
+### Adding unbound, local, User IDs to a certificate

 Some OpenPGP subsystems may add User IDs to a certificate, which are not bound to the primary key by the certificate's owner. This can be useful to store local identity information (e.g., Sequoia's public store attaches ["pet-names"][PET] to certificates, in this way).

 [PET]: https://sequoia-pgp.org/blog/2023/04/08/sequoia-sq/#an-address-book-style-trust-model

-Sequoia additionally certifies these foreign User IDs with the local trust root to facilitate authentication of certificates but marks all this additional signatures with a Non Exportable subpacket so that they are not visible when publishing the certificate e.g. on keyservers.
+Sequoia additionally certifies these "local, third party, User IDs" with a local trust root to facilitate local authentication decisions.
+To prevent accidental publication of these local User IDs (e.g. to public keyservers), Sequoia marks these binding signatures as "local" artifacts using [Exportable Certification](https://www.ietf.org/archive/id/draft-ietf-openpgp-crypto-refresh-12.html#name-exportable-certification) subpackets to mark them as non-exportable.

 (cert-flooding)=
 ### Third-party certification flooding