[dmd]

> there's room for a yellow pages style public key directory for journalists

There is! Most journalists have a Twitter account or at least some verifiable online identity, so that's exactly what https://keybase.io/ is for.

[davidholmesnyc]

Awesome. Didn't know that existed. I have to check it out for my own personal email communications between my friends.

[na85]

Doesn't keybase require you to upload your private keys to them? I can't think of a worse approach.

[coldpie]

At its core, it's just a keystore with some innovative verification features (face it: key signing parties weren't working). It has some optional sugar on top.

I do think it's a mistake for them to allow uploading your private key. They really shouldn't be encouraging private key promiscuity like that. Otherwise, I really like the service and hope it catches on.

[aendruk]

No, and you also don't have to use its client software. You can (and I do) use the service solely by signing JSON documents locally and uploading the signature.

[mburns]

No, they don't.

There is an option to upload an encrypted version of your private key, but you can simply choose not to.