We do not seem to be consistent in this area, but should also define a clear plan, what we want, where:
Scenarios to consider:
- sending email:
- encrypt to recipient
- encrypt to self (own key)
- encrypt to self (custom setting)
- autosaves / drafts
- reencrypt
Key qualities to consider:
- owner trust / certified key
- expiration
- deVS compliance
Actions to consider:
- disallow to select non-matching keys in the first place?
- allow using with a warning?
- config options (global / user definable)?