1. The protocol used to gossip public keys in the GPG keyserver pool is completely undocumented[1].
2. The protocol for uploading and downloading public keys from the pool only ever made it to draft stage, and is now very outdated[2].
3. Because the keyserver protocols are not establish, there is only one implementation that is written in OCaml (luckily it is still maintained)[3].
Luckily, these issues are fixable. We just need to spend the resources to fix them. What if GPG had the same resources as WhatsApp?
[1]: https://lists.nongnu.org/archive/html/sks-devel/2014-02/msg0...
[2]: http://tools.ietf.org/html/draft-shaw-openpgp-hkp-00
[3]: https://bitbucket.org/skskeyserver/sks-keyserver
1. The protocol used to gossip public keys in the GPG keyserver pool is completely undocumented[1].
2. The protocol for uploading and downloading public keys from the pool only ever made it to draft stage, and is now very outdated[2].
3. Because the keyserver protocols are not establish, there is only one implementation that is written in OCaml (luckily it is still maintained)[3].
Luckily, these issues are fixable. We just need to spend the resources to fix them. What if GPG had the same resources as WhatsApp?
[1]: https://lists.nongnu.org/archive/html/sks-devel/2014-02/msg0...
[2]: http://tools.ietf.org/html/draft-shaw-openpgp-hkp-00
[3]: https://bitbucket.org/skskeyserver/sks-keyserver