(Still vapid; we know that the key being trusted has not been tampered with, but we don't know whose key signed this statement.)
Vouch, Delegate - The Identity Layer
- Vouch for humans
- Delegate to services
Trust, Delegate, Block, Replace
There are four statement types involved in establishing and maintaining the identity layer. All are signed by one key and state something about another. This does 2 things:
- Distribute knowlege about the other key.
- Digitally signed by your private key (can be verified as authentically signed by you, can't be forged)
Trust: keys you vouch for as
representing someone "human, capable, and acting in good faith"
Block: keys you've identified
that should not be trusted
Replace: lost or compromised
identity keys you used to use
Delegate: keys that represent you on
various services (until you
revoke them).
When you vouch for someone else by scanning their ONE-OF-US.NET's phone app (or a QR code they shared with you), the ONE-OF-US.NET phone app uses your private key to sign and publish a structured statement that references their identity key, names them, and affirms that they're "human, capable, and acting in good faith".