Hi,
I've been working on a project for some time which allows members to trade goods/services with each other, but as with most things it's open to fraudsters ripping off the other user.
I was thinking about using an escrow service, whereby I hold the funds until the goods/service have been delivered, but dealing with payments is a bit beyond my skill level.
So I've been thinking about linking into the web of trust (
http://bitcoin-otc.com), so users can see how reputable the member is.
Am I right in thinking that every member at the web of trust has a PGP key, and that I could generate a random message on my website, encrypt it with the users public key, get them to decrypt it with their private and send the plain text message back to me to see if it matches? I would then display a verified logo next to their username.
Cryptography isn't my thing, so is that logic correct and would that work?
Open to other suggestions if you have any?
Thanks.