I'm having difficulty understanding

Posted Jul 4, 2019 8:26 UTC (Thu) by madhatter (subscriber, #4665)
In reply to: I'm having difficulty understanding by thestinger
Parent article: OpenPGP certificate flooding

While we're dogpiling on how broken the web of trust is, note that Werner Koch is on record in these pages saying the same thing, nearly two years ago:

The problem is systemic: the web of trust, he feels, is inherently broken. It is only explicable to geeks, and not to all of them, it publishes a global social graph, because signatures on keys imply physical meetings on known dates, and it doesn't scale. His preference for general public key handling is Trust On First Use (TOFU).

Disclaimer: I wrote the linked article.