BOF Abstract: PGP Key Server Network Stability

Len Sassaman, PGP Security
A discussion this summer on the NANOG list prompted Sassaman to consider ways that the ISP community can benefit and benefit from a robust PGP keyserver network. This BOF provides a forum for discussing the integration of PGP services into the Internet as a function that NSPs could provide.

In order for a robust keyserver network to exist, the cooperation of multiple providers will be necessary. If done correctly, we can all benefit from this. The existence of the program PGP is one of the things that makes the Internet what it is: a haven for free thought. If we can give the public anything that will make it easier to use this tool, we will have done something good.

Currently there are numerous problems with the keyserver network; the most obvious is frequent downtime in keyservers. The most serious is the lack of synchronization (and thus lack of propagation of certificate revocations) between keyservers. Both of these problems are due to the fact that most keyservers are run by private individuals, educational institutions, and other entities who do not have the level of resources available to ensure the existence of a stable, reliable, and robust network of keyservers.

We will discuss these problems, and then talk about the ways that a cooperative effort between network service providers could rectify this situation. Sassaman will also give a brief introduction to the PGP web of trust model, for those who aren't familiar with it.

In this BOF we hope to take the first steps to change things for the better!


About the Presenter
Len Sassaman is one of the leading experts on the PGP encryption software, and has worked with it since 1993. He left his career in the ISP field to take a position as software engineer at PGP Security, working on PGP key server development. Additionally he is the technical lead for the FreeCert project, and founder of Known Safe, Inc. His primary focus is PKI architecture.