Support GPG Web Key Directory

Simon · December 7, 2022, 7:31pm

What is this?

Web Key Directory (WKD) is a standard to serve keys in a well known location at the email domain.
Similar like mozilla’s auto configure xml, but for public keys.

Why?

Increased compatibility with encrypted email providers.
Encrypt on first message (Autocrypt only starts encryption from the first answer onwards)
Not a central key server (if set up correctly by the recipients provider)

Possible Problems

mostly only for enthusiasts hosting their own mail server or for users using a mail provider that supports it.
The client needs to do a web request to the recipients key server which could be used to grab the ip address, but it’s only when sending a message so on user action and not automatically so should be fine. A central key server does not have this problem but a few others instead (possibility to manipulate key, also grab IP address and even track which IP address asks for which public keys, centralised also means single point of failure and so on..).

More about WKD

https://wiki.gnupg.org/WKD
GnuPG: Web Key Directory (WKD) einrichten • Kuketz IT-Security Blog (German tutorial)

link2xt · December 7, 2022, 9:09pm

Similar thread:

ian · January 16, 2026, 2:32pm

Could we perhaps designate that issue as the DC client feature of looking up keys using WKD & PKI for new contacts, and this issue as chatmail support for serving up WKD for its own users?

The former one seems less contested.

adbenitez · January 16, 2026, 2:57pm

let’s close as duplicate

link2xt · January 17, 2026, 12:45am

Unlisting makes it impossible to find the topic in the search.