Wikileaks Sidesteps Publishing Public PGP Key 96
An anonymous reader writes "Repeated requests toward the Wikileaks staff regarding their use of PGP have gone unanswered. The current public PGP key posted has been expired since November 2nd, 2007. A response on their PGP talk page notes that the 'SSL based mail submission system' will be the secure online method of document submission. At the current time, there is no method to safely encrypt any postal communications with Wikileaks or verify that any given communication actually originated from a Wikileaks staff member."
Doubtless there are some complicating factors here -- but what is the best way to keep a confidentiality-centric site like Wikileaks trustworthy?
Re:I wish the world would use GPG more (Score:1, Informative)
PGP was and still is just a hack.
Re:Through video (Score:3, Informative)
If you mean the public key, that proves nothing, if you mean the private key, anyone who uses it in the future can attribute documents to you. I know 3am PBS isn't popular, but I still wouldn't broadcast it.
Re:What happened on November 2nd, 2007? (Score:5, Informative)
Expiry can also be useful in the event that a private key is lost. Revocation of a public key requires access to the private keys.
Re:maybe if gmail supported it.... (Score:4, Informative)
Re:maybe if gmail supported it.... (Score:3, Informative)