GNOME Bugzilla – Bug 604468
Automaticall certify keys using CACert
Last modified: 2012-03-15 10:22:15 UTC
It would be possible to simplify generating CACert certificates for keys from seahorse. 1) Create an account for CACert (from Seahorse). Using Email and the address. This can be done with a simle Seahorse dialog 2) CACert notifies the user if a keysigning party is close to his home (EMail) 3) The user goes there with his ID and gets his account verified. 4) Getting home, the account has enough points to certify a key 5) Seahorse tries to contact CACert regularly and if it is possible to sign a key (enough points) uploads it and gets the signed key back All the user has to do is to sign up using a simple dialog box, go to the key signing party and wait for his key to be signed.
(In reply to comment #0) > 5) Seahorse tries to contact CACert regularly and if it is possible to sign a > key (enough points) uploads it and gets the signed key back This is probably something that should live in daemon if implemented. Could you make a link to the relevant parts of the CACert website?
For most of the relevant pages you will need an account. The main page is at: http://www.cacert.org/ It seems they are planning to add some web API http://wiki.cacert.org/Software/IntegrationInterface http://wiki.cacert.org/Technology/KnowledgeBase/Server/CertificateDeployment I will check how advanced their plans are. Maybe I can even open a bug there pointing to this bug.
Added a bug for CAcert: http://bugs.cacert.org/view.php?id=800
This is an interesting idea. But needs someone to implement it. I'm trying to change gnome-keyring bugzilla so it tracks actual work/bugs, rather than enhancement plans and ideas. Discussion of enhancements are better suited for gnome-keyring-list@gnome.org until someone is ready to start implementation.