There's a good reason for that, actually. Besides, it doesn't matter how long ago I went to key-signing parties and such. The number of people I know using PGP I can count on one hand, maybe two. I have reliable channels to them to get keys. Web of trust is useless to me and despite my poor memory I can remember debating people about its many weaknesses even back when we did it a lot.

Modern tech has moved on to more interesting and reliable reputation systems. Web of trust's time has passed, for now.

I meant the whole thing - subkeys, their very purpose (even CAs use subkeys to sign certificats!) or usage, etc.

Seems a bit strange for security researcher - that's all.

Lost much of my memory in an accident where I took severe head injury. What my brain kept it kept. What it didn't it didn't. Most stuff I hadn't used in forever went poof. Web of trust model was one of those. Some things I'd just have to straight up relearn and I'm not bothering unless I have a need given only so much memory to spare.

Hope that makes sense.

> you haven't a slightest clue

No personal swipes, please.

How is this personal?

I'm not trying to insult anyone, it's a mere statement of a fact - the OP hasn't a slightest clue about web of trust, subkeys, key-signing, etc. and he clearly demonstrated it in several comments. In those he spreads misinformation and FUD - and those are signs of a troll. So if I say "you haven't a slightest clue" to such an individual, I'm being polite.

Good day.