Книга: Robot certificate authority: Certificate Authority, Public-Key cryptography, E-mail Address, Key Server, E-mail, Pretty Good Privacy, CAcert.Org, Web of Trust, Cryptography, Public Key Certificate

High Quality Content by WIKIPEDIA articles! Typically Robot CAs are set up to validate that the public key belonging to an e-mail address does actually belong to the e-mail address. This is achieved by the Robot CA signing each uid on the public key and sending the signed copy to the e-mail address, encrypted with the public key. If the public key belongs to whoever reads the e-mail address, they receive the signed copy, can decrypt it and then publish it to the public key servers. If the public key does not belong to whoever reads the e-mail address, they are unable to decrypt the encrypted key, but the accompanying message gives them sufficient information to let them know that that someone is attempting to impersonate them.