Upgraded refusal to verify to a MUST

Co-authored-by: Denis Kasak <dkasak@termina.org.uk>
pull/1294/head
Hubert Chathi 2 years ago committed by GitHub
parent 19e29e36af
commit 9fafadf311
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23

@ -1010,13 +1010,8 @@ against this.
2. Clients MUST fix the keys that are being verified at the beginning of the
verification process, and ensure that they do not change in the course of
verification.
3. Clients SHOULD also display a warning and MAY refuse to verify a user when
it detects that the user has a device with the same ID as a cross-signing
key.
4. If a client does not detect when a device has the same ID as a cross-signing
key, it MUST check key IDs being verified in a consistent order: it must
check if the key ID matches a cross-signing key first, and if not, treat it
as a device ID.
3. Clients SHOULD also display a warning and MUST refuse to verify a user when
they detect that the user has a device with the same ID as a cross-signing key.
A user's user-signing and self-signing keys are intended to be easily
replaceable if they are compromised by re-issuing a new key signed by

Loading…
Cancel
Save