From 7adb7769f55e4bd16a10f95063831c311660ebd2 Mon Sep 17 00:00:00 2001
From: Melvin Keskin <melvo@olomono.de>
Date: Sat, 9 Mar 2019 20:28:37 +0100
Subject: [PATCH] create new section "General Procedure"

---
 inbox/automatic-trust-transfer.xml | 44 ++++++++++++++++++++++++++++++
 1 file changed, 44 insertions(+)

diff --git a/inbox/automatic-trust-transfer.xml b/inbox/automatic-trust-transfer.xml
index 8f1ced54..85f62815 100644
--- a/inbox/automatic-trust-transfer.xml
+++ b/inbox/automatic-trust-transfer.xml
@@ -132,6 +132,50 @@
 		Thus, less user interaction is needed for authenticating all keys involved in the secure communication while preserving the same security level.
 	</p>
 </section1>
+<section1 topic='General Procedure' anchor='general-procedure'>
+	<p>
+		This section explains the basic procedure of autmomatically authenticating or revoking a key by a trust message.
+		It does not specify the detailed behaviour which can be found in section <link url='#usecases'>Use Cases</link>.
+		Instead, this section should rather show the fundamental idea behind it.
+	</p>
+	<section2 topic='Authentication' anchor='general-procedure-authentication'>
+		<ol>
+			<li>
+				<p>
+					Device 1 manually authenticates the key of device 2.
+					Device 1 automatically sends an authentication message for device 2's key to devices whose keys it has already authenticated and an authentication message for the keys of those devices to device 2.
+				</p>
+			</li>
+			<li>
+				<p>
+					Device 2 manually authenticates the key of device 1.
+					Device 2 automatically sends an authentication message for device 1's key to devices whose keys it has already authenticated and an authentication message for the keys of those devices to device 1.
+				</p>
+			</li>
+			<li>
+				<p>
+					Device 1 automatically authenticates the keys of the authentication message from device 2.
+					Each device receiving an authentication message from device 1 automatically authenticates device 2's key, if device 1's key has already been authenticated by it.
+					Each device receiving an authentication message from device 2 automatically authenticates the corresponding keys, if device 2's key has been authenticated by it.
+				</p>
+			</li>
+			<li>
+				<p>
+					Device 2 automatically authenticates the keys of the authentication message from device 1.
+					Each device receiving an authentication message from device 2 automatically authenticates device 1's key, if device 2's key has already been authenticated by it.
+					Each device receiving an authentication message from device 1 automatically authenticates the corresponding keys, if device 1's key has been authenticated by it.
+				</p>
+			</li>
+		</ol>
+	</section2>
+	<section2 topic='Revocation' anchor='general-procedure-revocation'>
+		<p>
+			Device 1 manually revokes the trust in the key of device 2.
+			Device 1 automatically sends a revocation message for device 2's key to devices whose keys it has already authenticated.
+			Each device receiving a revocation message from device 1 automatically revokes the trust in device 2's key, if device 1's key has already been authenticated by it.
+		</p>
+	</section2>
+</section1>
 <section1 topic='Trust Message URI' anchor='trust-message-uri'>
 	<p>
 		A trust message contains an <cite>XMPP URI</cite> (see &xep0147;) defined by the following scheme: