IETF Logo Mail Archive

[Openpgp-dt] 2022-03-16 design team notes

Stephen Farrell <stephen.farrell@cs.tcd.ie> Wed, 16 March 2022 14:18 UTC

Return-Path: <stephen.farrell@cs.tcd.ie>
X-Original-To: openpgp-dt@ietfa.amsl.com
Delivered-To: openpgp-dt@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 620713A18B8 for <openpgp-dt@ietfa.amsl.com>; Wed, 16 Mar 2022 07:18:34 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.01
X-Spam-Level:
X-Spam-Status: No, score=-2.01 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=cs.tcd.ie
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id F_TPwozRBi1d for <openpgp-dt@ietfa.amsl.com>; Wed, 16 Mar 2022 07:18:29 -0700 (PDT)
Received: from EUR01-DB5-obe.outbound.protection.outlook.com (mail-db5eur01on071b.outbound.protection.outlook.com [IPv6:2a01:111:f400:fe02::71b]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B53D33A18BA for <openpgp-dt@ietf.org>; Wed, 16 Mar 2022 07:18:28 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=e0MSq7MGLjNrHvi8l630s8Q6Tt+WGjQZ4+j25ec1sqQCV0LfsLXIfry9AcTTjTROsNFt8OvAFSojU8AK5K/8vLF3PGLcnzMZimMxC4Ejbmw0drgq5N3975wjrFZJRn4saRs4/e3tW82gOkKVtW44HfuOGhm7uspPnoZ0lISeGMSGWtBvrMvbxxYx0stq3vH8pkyWe8/BF54t0M6+vrFsYJ7aPqxYjgVfTeMF13hi8VbbL8lFSzIWEd+BZ47CCecxVOodQdKMdSEmtQbtp59/y0ZXH1VuheImPrf/uIS5brZw/sFsBIFQB49Eg1KZtt7VXokO0/1SOZOXYhjIOktPaA==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=IDJpy3/N8Q37083Ekj3YBxConNGIcAXCOTfx+X3bzSo=; b=YpStxBrA5iFHjxptCiLQWc7AbZT1e9cXM3iaGx2cyGhsDv5ZNKhUraOuOkR7QabJ7A5pzFRJcuvuNS2nYsR0hO2zSyWfXDmlKBIn3783PYFOkhsX4IWlg/pvH0e8qgyfzwgbZK9862x0KmG0RleA7/RwKOtI843wjBvicG8PCmRuIaf5Qw9lVpBJmTneH1EtB8LIBNinxTSNQlD2IktI2gp84mjY2ci94TTHjFKIsNEw7gU532axXtH4QEo++W5VsQRimvdBOkJQCKQoHcBYX12+ATkbgFvbnBvk2WdJoISDNBaq4EJQd37gM+5YFtXbCeX8mTVDVF6cdx2oJsxqeg==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cs.tcd.ie; dmarc=pass action=none header.from=cs.tcd.ie; dkim=pass header.d=cs.tcd.ie; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cs.tcd.ie; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=IDJpy3/N8Q37083Ekj3YBxConNGIcAXCOTfx+X3bzSo=; b=m7yLmqAwChyQ5aNqJunJGrJloysBdcY57CQ5QH/ezUZLLUhX8btaQEmxQJAAZkbudVRoPfTBknJu81psY8vsbjlA7KB6ytLJ0hGJhz/x3KuHJSQy9HcZpcUs0vbqVkATXpwdc6RnOGgoqaCLm3DsOPttgit1PgFW9g/9dBXrb+/g2IsPuubn5NMVVk6EK1uJ5RfenxPfndpVwaDrttG6LU2QWC7UNpXPH+mh7E27hObvMeb2+AR8g1BC8SSpchEuHB/uYxAv9a3NMNLcg0bprjTg1gpFCizJqq+IyhT0mQIAB24zy7y6isS7r2GzRs3ext6BIh3X8mGkpXt1llceKQ==
Authentication-Results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=cs.tcd.ie;
Received: from AM6PR02MB5112.eurprd02.prod.outlook.com (2603:10a6:20b:90::21) by PAXPR02MB7453.eurprd02.prod.outlook.com (2603:10a6:102:1c9::6) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5081.14; Wed, 16 Mar 2022 14:18:21 +0000
Received: from AM6PR02MB5112.eurprd02.prod.outlook.com ([fe80::2168:5939:d540:ccf0]) by AM6PR02MB5112.eurprd02.prod.outlook.com ([fe80::2168:5939:d540:ccf0%3]) with mapi id 15.20.5081.015; Wed, 16 Mar 2022 14:18:21 +0000
Message-ID: <c1fcddea-4416-a722-ccff-d2cbf9f55204@cs.tcd.ie>
Date: Wed, 16 Mar 2022 14:18:03 +0000
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:91.0) Gecko/20100101 Thunderbird/91.5.0
To: openpgp-dt@ietf.org
Content-Language: en-US
From: Stephen Farrell <stephen.farrell@cs.tcd.ie>
Content-Type: multipart/signed; micalg="pgp-sha256"; protocol="application/pgp-signature"; boundary="------------ZyV8Y8og05doSVozeOCva3qk"
X-ClientProxiedBy: DB7PR05CA0059.eurprd05.prod.outlook.com (2603:10a6:10:2e::36) To AM6PR02MB5112.eurprd02.prod.outlook.com (2603:10a6:20b:90::21)
MIME-Version: 1.0
X-MS-Exchange-MessageSentRepresentingType: 1
X-MS-PublicTrafficType: Email
X-MS-Office365-Filtering-Correlation-Id: 0e87392a-8307-4fb5-2a86-08da0757d301
X-MS-TrafficTypeDiagnostic: PAXPR02MB7453:EE_
X-MS-Exchange-SharedMailbox-RoutingAgent-Processed: True
X-Microsoft-Antispam-PRVS: <PAXPR02MB74538B4FEE1633C1D09E1861A8119@PAXPR02MB7453.eurprd02.prod.outlook.com>
X-TCD-Routed-via-EOP: Routed via EOP
X-TCD-ROUTED: Passed-Transport-Routing-Rules
X-MS-Exchange-SenderADCheck: 1
X-MS-Exchange-AntiSpam-Relay: 0
X-Microsoft-Antispam: BCL:0;
X-Microsoft-Antispam-Message-Info: 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
X-Forefront-Antispam-Report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:AM6PR02MB5112.eurprd02.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230001)(4636009)(366004)(86362001)(31696002)(8936002)(6916009)(786003)(316002)(66946007)(66476007)(66556008)(235185007)(38100700002)(5660300002)(44832011)(8676002)(33964004)(2906002)(6666004)(6512007)(6506007)(26005)(2616005)(186003)(83380400001)(21480400003)(966005)(6486002)(508600001)(36756003)(31686004)(43740500002)(45980500001); DIR:OUT; SFP:1102;
X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 1
X-MS-Exchange-AntiSpam-MessageData-0: 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
X-OriginatorOrg: cs.tcd.ie
X-MS-Exchange-CrossTenant-Network-Message-Id: 0e87392a-8307-4fb5-2a86-08da0757d301
X-MS-Exchange-CrossTenant-AuthSource: AM6PR02MB5112.eurprd02.prod.outlook.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 16 Mar 2022 14:18:21.5745 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-CrossTenant-Id: d595be8d-b306-45f4-8064-9e5b82fbe52b
X-MS-Exchange-CrossTenant-MailboxType: HOSTED
X-MS-Exchange-CrossTenant-UserPrincipalName: mJmTH0Pjy+IeI6DNF7lQdZEnkXkA8Z2asX8ZqW3JE/CvltUbg9jYXEkcFTq6TBw/
X-MS-Exchange-Transport-CrossTenantHeadersStamped: PAXPR02MB7453
Archived-At: <https://mailarchive.ietf.org/arch/msg/openpgp-dt/fevRP5lrbE-mo_2sYcN_UTXxW38>
Subject: [Openpgp-dt] 2022-03-16 design team notes
X-BeenThere: openpgp-dt@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: OpenPGP working group design team <openpgp-dt.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/openpgp-dt>, <mailto:openpgp-dt-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/openpgp-dt/>
List-Post: <mailto:openpgp-dt@ietf.org>
List-Help: <mailto:openpgp-dt-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/openpgp-dt>, <mailto:openpgp-dt-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 16 Mar 2022 14:18:35 -0000

OpenPGP Design Team
2022-03-16 meeting

Present:
dkg
gniibe
justus
daniel H
stephen
paul
jeffrey

# Agenda

Current draft agenda: 
https://datatracker.ietf.org/meeting/113/materials/agenda-113-openpgp-02

Slides for IETF 113

SF: mea culpa, didn't get anything done:-(
ACTION: SF - do the administrivia slides, include aksing who's read 
draft and if they wanna add any items for discussion (now or on list)
ACTION: SF/DKG - chase other presenters for slides
dkg created a repo
   justus uploaded stuff 
https://gitlab.com/openpgp-wg/openpgp-wg-admin/-/tree/main/ietf-113/draft-ietf-openpgp-crypto-refresh-05
ACTION: All to review justus' list in next 24 hours and suggest 
additions where something is missing (either by editing .org file or 
sending mail to DT list)
- ACTION dkg: add a high level overview as to how we envisage the v5 
parts working, not so much for WG discussion but more scene-setting
- Justus happy to present, daniel H as in-room backup

topics to cover @ meeting where we want to encourage disucssion:
- daniel H: #134/#153, ACTION daniel H will make 1/2 slides
- paul: do we need to talk about the pain of keyIDs and humans? yep 
ACTION: paul will make slide
- dkg: framing of this - maybe we agree to not solve this (now)?
- paul: we kind of owe readers at least some text/hints
- dkg: issue #99, retcon sha1 collision detection
- less an issue DT need to get more input on, more a heads-up
- justus: algorithm (sha1-cd?) maybe not well enough defined?
- daniel H: library support?
- certificate structure: !153 and !134
- daniel H: will add a slide or two
- goal here is partly that v5 certs do differ so the spec can be 
followed and useful without requiring as much folklore as has been the case
- daniel H: 134 tried to keep 2 sigs "mandatory" for certs, 153 
considers an  apossible weakness...
- dkg: when is it useful that primary key holder has explicitly agreed 
to the name on the primary key, maybe UKS attacks?
- dkg: self-sig over userid maybe not useful 100% of time but not 0%?
- daniel H: self-sig over userid helps verifier
- ACTION: daniel h to update !153 with where he landed on it

v2.23.0 | Report a Bug | By Email