[Openpgp-dt] 2022-05-03 design team meeting notes
Stephen Farrell <stephen.farrell@cs.tcd.ie> Tue, 03 May 2022 14:25 UTC
Return-Path: <stephen.farrell@cs.tcd.ie>
X-Original-To: openpgp-dt@ietfa.amsl.com
Delivered-To: openpgp-dt@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 34DCFC1594B3 for <openpgp-dt@ietfa.amsl.com>; Tue, 3 May 2022 07:25:43 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7
X-Spam-Level:
X-Spam-Status: No, score=-7 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_HI=-5, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=cs.tcd.ie
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id swKhno-coCYD for <openpgp-dt@ietfa.amsl.com>; Tue, 3 May 2022 07:25:38 -0700 (PDT)
Received: from EUR01-HE1-obe.outbound.protection.outlook.com (mail-he1eur01on071b.outbound.protection.outlook.com [IPv6:2a01:111:f400:fe1e::71b]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 10841C15948A for <openpgp-dt@ietf.org>; Tue, 3 May 2022 07:23:56 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=jjEa8YLNgEF++BZxYGVdYBiilGcAzO92ryxT9MmWsJql4aYLrcEJSQoDk/cB4C8+NZKBI+jNI+UZT2clq3evIR4QLsSSJ3lcVLOPyQatmGbnMf2CYxZGV0SeiLI3DOCS551dy/nG5vbVUOVekAScjc/qNRwuBmPVJac9eMFounfPdWwcNFZgyhLvPBcaMTdq3pPI/j3Wk0xnkrhSV2tJcFdKGKzlMN8zVvNomu7VY+pjuYl/KX2MvF1nLmS7xIeRKjPvFq6f56VNYc3JDxA74mqdGZxSg09Re3deuKZAhhM7idamJ/6YRs8SMH9FVvJnBvM0U+yhi+zuKEhnRhAF8Q==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=8lieI0sEyo45rc3D9e5haayidVFKM4WYMSm/zt4xUa8=; b=W91WhKQBd8RSMNZ+IfkPLYYZcelzGq1OcmcAOi0+W8UtWzzr7j813Sfu5ouvShQfLLqJK+tiZlcTn4v4A4hd3jj6JzQAafXi5xPKo0Cdf7xpnYeFCQG6LlgDvYzLeGrcoXerJxJBFCI7fUxAicsNjRIrmavuhuMIRMaB3ZGra0GfTk38qjPupGcupUbnUZ6FcAMvQOg0jyLi8URt8miDUMfKjyNCHInKe/g6djNy5gJS90r0F/SvFkTN/mBvJqJZt2cEwmvHgLLHqrxGhJkXAEl5bBPHqt5lDLjJbCcNR2FUDr5Iu9KaWlv8N+2upQD/FKHs9/PWEMsMOwIcP9qPUA==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cs.tcd.ie; dmarc=pass action=none header.from=cs.tcd.ie; dkim=pass header.d=cs.tcd.ie; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cs.tcd.ie; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=8lieI0sEyo45rc3D9e5haayidVFKM4WYMSm/zt4xUa8=; b=jJt8N2i5aUPp3tBBeYNVbDf2yAZ9/OHlvre/Q2EnI/GxO/qjpX8C6R6WGTSw+7g+NxHllZ8flSTXKSKLppDGsM29v/6HSBI5aWP87h7jbt2hG/Jp9sd+LpNAqyb5jVbBWEYSfOQWcn/Ad9cizFEEUV44b3F95Mv3zTSx4Q9R/JXwbzFcBx71ZoOvNbR09O1kMIlTBDfxKam1eBe7tMAYsfCzcKK4VBZVhHnWUGR8PMoveE6hsNC0WDLtmtwUvRKa+3kNHjLlavQjviZfa6WKQTZ3b8/YGSsu7fiiQh7TiK08bGwx99k40YQ4o3iIpDOTFkdg/HFPEMNUFHfqZndVNQ==
Authentication-Results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=cs.tcd.ie;
Received: from DB7PR02MB5113.eurprd02.prod.outlook.com (2603:10a6:10:77::15) by VI1PR0202MB2878.eurprd02.prod.outlook.com (2603:10a6:800:dc::14) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5206.24; Tue, 3 May 2022 14:23:50 +0000
Received: from DB7PR02MB5113.eurprd02.prod.outlook.com ([fe80::e93d:e1fe:56bb:f980]) by DB7PR02MB5113.eurprd02.prod.outlook.com ([fe80::e93d:e1fe:56bb:f980%7]) with mapi id 15.20.5206.024; Tue, 3 May 2022 14:23:50 +0000
Message-ID: <b51dd2c3-00f5-f1fe-7aed-ad875c9a85d3@cs.tcd.ie>
Date: Tue, 03 May 2022 15:23:49 +0100
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:91.0) Gecko/20100101 Thunderbird/91.8.1
Content-Language: en-US
To: openpgp-dt@ietf.org
From: Stephen Farrell <stephen.farrell@cs.tcd.ie>
Content-Type: multipart/signed; micalg="pgp-sha256"; protocol="application/pgp-signature"; boundary="------------8GFRfX0rfbfttcgdwREikJNv"
X-ClientProxiedBy: DB6PR0402CA0002.eurprd04.prod.outlook.com (2603:10a6:4:91::12) To DB7PR02MB5113.eurprd02.prod.outlook.com (2603:10a6:10:77::15)
MIME-Version: 1.0
X-MS-Exchange-MessageSentRepresentingType: 1
X-MS-PublicTrafficType: Email
X-MS-Office365-Filtering-Correlation-Id: 473e6bbc-b4db-40d4-6cf3-08da2d108ae1
X-MS-TrafficTypeDiagnostic: VI1PR0202MB2878:EE_
X-MS-Exchange-SharedMailbox-RoutingAgent-Processed: True
X-Microsoft-Antispam-PRVS: <VI1PR0202MB2878ABBD86F36D68405A49DDA8C09@VI1PR0202MB2878.eurprd02.prod.outlook.com>
X-TCD-Routed-via-EOP: Routed via EOP
X-TCD-ROUTED: Passed-Transport-Routing-Rules
X-MS-Exchange-SenderADCheck: 1
X-MS-Exchange-AntiSpam-Relay: 0
X-Microsoft-Antispam: BCL:0;
X-Microsoft-Antispam-Message-Info: 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
X-Forefront-Antispam-Report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:DB7PR02MB5113.eurprd02.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230001)(4636009)(366004)(6512007)(2906002)(6486002)(966005)(235185007)(8936002)(44832011)(36756003)(33964004)(31686004)(5660300002)(6506007)(66574015)(21480400003)(316002)(186003)(83380400001)(786003)(6916009)(38100700002)(31696002)(8676002)(66476007)(508600001)(86362001)(66556008)(2616005)(66946007)(45980500001)(43740500002); DIR:OUT; SFP:1102;
X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 2
X-MS-Exchange-AntiSpam-MessageData-0: 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
X-MS-Exchange-AntiSpam-MessageData-1: l7cQD+9rvsuQtw==
X-OriginatorOrg: cs.tcd.ie
X-MS-Exchange-CrossTenant-Network-Message-Id: 473e6bbc-b4db-40d4-6cf3-08da2d108ae1
X-MS-Exchange-CrossTenant-AuthSource: DB7PR02MB5113.eurprd02.prod.outlook.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 03 May 2022 14:23:50.0508 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-CrossTenant-Id: d595be8d-b306-45f4-8064-9e5b82fbe52b
X-MS-Exchange-CrossTenant-MailboxType: HOSTED
X-MS-Exchange-CrossTenant-UserPrincipalName: hbtSvUcY+77Xb/MXWYpdo68lhEd7dBeXRVfDnhfyQvahsqT5Mkm1N485Ce39meyj
X-MS-Exchange-Transport-CrossTenantHeadersStamped: VI1PR0202MB2878
Archived-At: <https://mailarchive.ietf.org/arch/msg/openpgp-dt/4HsW0mEMqarZQdO2c9btIuH_Ya8>
Subject: [Openpgp-dt] 2022-05-03 design team meeting notes
X-BeenThere: openpgp-dt@ietf.org
X-Mailman-Version: 2.1.34
Precedence: list
List-Id: OpenPGP working group design team <openpgp-dt.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/openpgp-dt>, <mailto:openpgp-dt-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/openpgp-dt/>
List-Post: <mailto:openpgp-dt@ietf.org>
List-Help: <mailto:openpgp-dt-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/openpgp-dt>, <mailto:openpgp-dt-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 03 May 2022 14:25:43 -0000
# OpenPGP Design Team Meeting
2022-05-03
Present:
dkg
Justus
Stephen
Daniel Huigens
Jeffrey
# Agenda:
- new TB release & sha-1: see discussion on WG list
TODO: jeffrey to see whether RNP offers time-limited algorithm
acceptance; if so, suggest the change to TB.
## Open MRs
- We have a pile with 1 approver (and a good few with more), we got to
>1 approver on 'em
## https://gitlab.com/openpgp-wg/rfc4880bis/-/merge_requests/178
- needs some rebase/merge magic
- now has >1 approver
## https://gitlab.com/openpgp-wg/rfc4880bis/-/merge_requests/177
- now has >1 approver
## https://gitlab.com/openpgp-wg/rfc4880bis/-/merge_requests/176
- now has >1 approver
## https://gitlab.com/openpgp-wg/rfc4880bis/-/merge_requests/175
- now has >1 approver
- lots of trivial changes so might create merge conflicts
## https://gitlab.com/openpgp-wg/rfc4880bis/-/merge_requests/171
- now has >1 approver
## https://gitlab.com/openpgp-wg/rfc4880bis/-/merge_requests/169
- now has >1 approver
## https://gitlab.com/openpgp-wg/rfc4880bis/-/merge_requests/155
- now has >1 approver
## Outstanding issues
## https://gitlab.com/openpgp-wg/rfc4880bis/-/issues/111
- seems like a good plan, needs someone to do it
- if nobody gets to it we can live with that
- add a "nice-to-have" label
## https://gitlab.com/openpgp-wg/rfc4880bis/-/issues/52
- whether to document what's currenly a hacky/proprietary way to export
mixtures of public and private key materials
- conclusion is to gather more feedback before trying for an MR
- TODO: dkg will check with gniibe, jeffrey will check in locally
## https://gitlab.com/openpgp-wg/rfc4880bis/-/issues/95
- TODO: dkg to send to wg list about this
- text in draft already covers this but wanted to check
## https://gitlab.com/openpgp-wg/rfc4880bis/-/issues/42
- danielh: this can be closed
## https://gitlab.com/openpgp-wg/rfc4880bis/-/issues/103
- same as the two above really, but with a bit still to be merged to
close this one
## https://gitlab.com/openpgp-wg/rfc4880bis/-/issues/64
- dkg: if we do something like this, maybe include public key and not a FP
- sftcd: is this something that could be separated out? if so would that
be a plan? (answers: yes & dunno)
- mark as nice-to-have
## Misc.
- still an action on SF from ietf113 meeting
- possible compression bombs - is that handled somewhere? there's a test
vector in Justus' repo
TODO: dkg to open an issue (point to compression bomb in sequoia)
- limits on numbers of signatures (ABNF recursion?), embedded signatures.
TODO: dkg to open an issue
- huigens points out that v5 revocation certificate does not have a
direct-key signature, which would make it difficult to distribute
designated revoker mechanism (as that mechanism would live on the
direct-key signature)
- getting finished:
- sftcd try arrange more meeting slots next week - send poll
- sftcd to check with paul on merges
- [Openpgp-dt] 2022-05-03 design team meeting notes Stephen Farrell