search

hackergrrl / ideas

Ideas shared publicly to get feedback & review from the internet community.
MIT License
2 stars 0 forks source link

npm public key infrastructure (pki) #5

Open hackergrrl opened 8 years ago

hackergrrl commented 8 years ago

we already trust npm, so why not use it as a public key infrastructure?

publish your identity

  1. create a module called noffle-identity (replace noffle with your npm username)
  2. add a single file, id.pub, with your public key (ssh format?)
  3. publish as a scoped module, so that nobody can steal your name

this provides a consistent format for every npm user's public key

retrieve / check identity

maybe there's a module/command called npm-identity-verify that can search your local cache (or pulling from npm if available) for someone's identity and verify that they are who they say they are

thanks for @mafintosh for the idea!

yangwao commented 8 years ago

:+1: hack it like another 'keybase' source, mm, nice. IPFS guys have something in mind https://github.com/ipfs/specs/tree/master/keychain as you are around ipfs too :palm_tree: