Key Management Certification Authority
- A central certification authority for an organisation can be trusted to certify keys
- for example, any key at the university may be signed by “pgp@mcc.ac.uk”
- his signature affirms that the key really belongs to the person it claims to
- therefore this requires legal identification before your key can be signed by the certification authority