[Openpgp-dt] 2022-05-24 meeting notes
Stephen Farrell <stephen.farrell@cs.tcd.ie> Tue, 24 May 2022 14:21 UTC
Return-Path: <stephen.farrell@cs.tcd.ie>
X-Original-To: openpgp-dt@ietfa.amsl.com
Delivered-To: openpgp-dt@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A4A4EC159A30 for <openpgp-dt@ietfa.amsl.com>; Tue, 24 May 2022 07:21:14 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=cs.tcd.ie
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id M-yRAlReOh4J for <openpgp-dt@ietfa.amsl.com>; Tue, 24 May 2022 07:21:10 -0700 (PDT)
Received: from EUR02-AM5-obe.outbound.protection.outlook.com (mail-am5eur02on071a.outbound.protection.outlook.com [IPv6:2a01:111:f400:fe07::71a]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id CE573C14F72B for <openpgp-dt@ietf.org>; Tue, 24 May 2022 07:21:09 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=e381BGtf4KGc6FXw21lV4SuUdXqjhyKg5kmCcMJ2piyvrFVsVMAJhcD+nX/andyxsLyLYCC+AJuLiWGom7ki146oXXNYQdO9YQqAP3LRDgN0oPYuPtHxfyJxAI8qib3iZ3+Y2t7BNpQCsv/i/FQmW1zsJNmg8Qr3dgQCW5vix3DgKZRGc5kDbvJvDk6aZFBXQh2BtjBFN9e6z5D7ONS6EepoV+guo/j8n9cObQd3tWxyKUQT9GdmSmhYqMfi6WHvW/Iai2eRyRpe02dVdkafnoJyw4c8pulzqiOw9uty+IdU9Z5ca866udjT7boC2nXAoR5paSSPSc/OqpCvruLtGw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=lBVd6cWc7BgujJmX1bVASs/tPTK2j0NL68vR+LL9wtM=; b=ghYmh6dmWfUHqsdrwkZx5w5UaiUlBsxmv6mAFiRYVZ72oA1TcjKKzHMJOFrF0y7aYV9O2tkdy9Rc3gc00cAU/FoV/VH2+pkDCUaBEsCmbIDWsdywQ9lGWjAtwOl/5waDFC4u+ph4H2doXlv5zZtOK14btkdlvhJOUD1iDIyz7cAWJgf1rRcplhSDY1ppjAfO4vR8oGQmz9nLYnl1osyMzdIHjQlISaeTwnFdc44m6tIM2b7OnmhsMRoKttyx09yGwaKcvPqjWN/aW/ObmskOwWYR+yuupHxt30N18r7pEd0Frt5VqtWRCzFb1WiHEBizCey2ppoHgPdovAx3O2sptw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=cs.tcd.ie; dmarc=pass action=none header.from=cs.tcd.ie; dkim=pass header.d=cs.tcd.ie; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cs.tcd.ie; s=selector1; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=lBVd6cWc7BgujJmX1bVASs/tPTK2j0NL68vR+LL9wtM=; b=be1kA1t/j3nnNlQV+SaufeYNHQkDB6hNSV7lPNTRiyEGjxWKj9S7++NZXIN2km46Bf6ZXh1ANOBMXgZr9Ol6VKrSQzGFR1I/UKnJUjfG5spkult2sECZa/DnJlTsrc6IpCiPTe9+S+B+w9PDmVpMS5p5B8CE3x9L/AXe7WnzTrQKvmUwL78uTeejVskJX57hZsxJfndqnQUiGcC9IqNL29JWXeezR/FcmG2LgFg/W4ytVi8Cfi9ZD5mGP6wqNJVKZgv98bm44Tys4opmnnEk9qDH9wb3OjbavKLjfv5OAgBJ7nkjXrrZK30PPAKhjkd9/tI/zocCopp0P8CMYym3zw==
Authentication-Results: dkim=none (message not signed) header.d=none;dmarc=none action=none header.from=cs.tcd.ie;
Received: from DB7PR02MB5113.eurprd02.prod.outlook.com (2603:10a6:10:77::15) by DB8PR02MB5946.eurprd02.prod.outlook.com (2603:10a6:10:11c::16) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.5273.23; Tue, 24 May 2022 14:21:04 +0000
Received: from DB7PR02MB5113.eurprd02.prod.outlook.com ([fe80::92f:cb0b:71d:b049]) by DB7PR02MB5113.eurprd02.prod.outlook.com ([fe80::92f:cb0b:71d:b049%7]) with mapi id 15.20.5273.022; Tue, 24 May 2022 14:21:04 +0000
Message-ID: <23129bf7-47d3-0d4a-fd00-1e3913184ff7@cs.tcd.ie>
Date: Tue, 24 May 2022 15:21:03 +0100
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:91.0) Gecko/20100101 Thunderbird/91.9.1
Content-Language: en-US
To: openpgp-dt@ietf.org
From: Stephen Farrell <stephen.farrell@cs.tcd.ie>
Content-Type: multipart/signed; micalg="pgp-sha256"; protocol="application/pgp-signature"; boundary="------------60imRY1G9uiUjBItsfzdC3ih"
X-ClientProxiedBy: DB6PR0202CA0045.eurprd02.prod.outlook.com (2603:10a6:4:a5::31) To DB7PR02MB5113.eurprd02.prod.outlook.com (2603:10a6:10:77::15)
MIME-Version: 1.0
X-MS-Exchange-MessageSentRepresentingType: 1
X-MS-PublicTrafficType: Email
X-MS-Office365-Filtering-Correlation-Id: 78dbdc43-2f1e-44c6-8edb-08da3d90a2ea
X-MS-TrafficTypeDiagnostic: DB8PR02MB5946:EE_
X-MS-Exchange-SharedMailbox-RoutingAgent-Processed: True
X-Microsoft-Antispam-PRVS: <DB8PR02MB594600D7A84F50F96709C09EA8D79@DB8PR02MB5946.eurprd02.prod.outlook.com>
X-TCD-Routed-via-EOP: Routed via EOP
X-TCD-ROUTED: Passed-Transport-Routing-Rules
X-MS-Exchange-SenderADCheck: 1
X-MS-Exchange-AntiSpam-Relay: 0
X-Microsoft-Antispam: BCL:0;
X-Microsoft-Antispam-Message-Info: 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
X-Forefront-Antispam-Report: CIP:255.255.255.255; CTRY:; LANG:en; SCL:1; SRV:; IPV:NLI; SFV:NSPM; H:DB7PR02MB5113.eurprd02.prod.outlook.com; PTR:; CAT:NONE; SFS:(13230001)(4636009)(366004)(21480400003)(31686004)(186003)(44832011)(8936002)(5660300002)(235185007)(2906002)(38100700002)(36756003)(83380400001)(6486002)(966005)(6506007)(33964004)(86362001)(2616005)(8676002)(66946007)(66476007)(31696002)(66556008)(316002)(6512007)(786003)(508600001)(6916009)(43740500002)(45980500001); DIR:OUT; SFP:1102;
X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 2
X-MS-Exchange-AntiSpam-MessageData-0: 4pxuHBMPydNC4/jSuaJp2ZkyAhg50PuegClax8HZBbwrtsX8OtW6Z4CVPKjxug2xRe1XUw62jQKRG3ZF6zOg175vWtzNyPHcXMND2EsTs3ooRbJHuq8GPRH6gh1DlcGdFqKEz0UeGjHIdNRtGgW9fq0kXD99KRDzeDMtjLOxv8PrTR2qf0ZPtMEpPjaUDZfGjxSypDzdNga2bXjFiYdLIcGeG7pIGBfwq0MNWAaCObVtz5pKqfnc7uk8bsgR8vzXAPLuKRvplY0DT91hcfqdFXITL8aGKUQq2+a2sCre44CkObTrmdLSnAxa3nbrpLZsQYFms1YIG6rL95oNH6j7XfNRaIjYaVO/yq8cJQv1zKU49zBtEYY91uB+6sTgXE907HUDMpT/yf4gwSkNH0t3K3phkp/Yq3fo/KKkkTKyMnkERjkBCZoehJidqx5wUtdTCLh8bFwkAd+op9seHSiF4jGDgeDa49MgguoeHIWYHvKaENI/rpuX30SUPKYxvN+EpkgRX3mtwANegpgSgS0pvoBxb9fVLGJen/YWRGUYpxMosapAhUzQjpjcUP/EUYGzOzjJHAr9TQBe5iBR097iHOyvK7iDnCfhGHdKFii4z58oIw22fnoPtsTzyakTcjXXb9ksLX4AJPt6a0ZHdno49vrdHEAUxH+CRqkN7AwQQruAI1yzzRYW0VRAifT3LJviwLCIqN4boCGX1iyae7pIGzUxNlyAum1Tqg6KGqRqq8Ff9aUYzDyBBy9yTk+TeJICR7rHZXEQICl+FBfUUhUKghsmvQ19STL2O3DTvzaKA2Q1Wu2HH2xDLmHtWyUJHFmJiBfmVy+zHOqoh7+XJA6Ia29dAwP9ADTNUCMCT+4l7Fmtz2/DckL/Mf/82O09RM+cetJimgJwMq9dBrLRO3f7e8/LjowTicd+i8ZaXKXkbTl7nSbRHaH78KhEjaHLF4NQKG1ocSNCQ3EUNkz1W4kTjIZ4QPXKcR8GjmKai7DOImj9HGBI+LdrXJbjwIYNhLNXn3sIfqqhSbNv9YNoxpIFvrqR+kHnXG4x/RLInm9xcej5L5orhgIPxCSXLjYMtHH2EZhx+0D6lEHyISYbp3vftXQhufTkqf3vsMNOFTX45F+oT7gv8KAzG1kxWxzBC6LAYrKBEQv0adN1cQ47omXcsIxOERT0a0af2fKsgw2HlMuHpYi9GLSgWgkI4srQ6BLvKMPk1uOpOuO/WlSdOHHHNd+by4UNM2/lQrqk61IVL/CL4vhU4AEpOHqjcLUqpVe1h2QHTh/gARpljK3UfokBhJtETb6tre78YYT8c82Sm/ADwIJD+AkuOtdBeo314J3mkJD04LK5TSZtXQAgIYYKF3XzjbvMTEG3syuVX8RiO1bhgAFbCdKKWbDv2jZUdTmVWmerqkh9RWdVHcYPTwQnYbYXD77SJ16AaBZZ2Mn2ZV5MO+PexBNEbSFrp7JDLXRLRSfGjgfrpRAoV/Bs7z817LbnNmWkAMNCYNnzdvlEcUt/cS5t7yN4K+wWD2cJa2soZW1CPcS7BjTyCc9HwwUnD+K0loVAU6UDl4rJ3Cj34OC75cZKFtV1IqQGEGFiE3qiTYLQn1HzylHAsu8zjgV8xRi53qXPNyJnjpw+9wed6yfYCjSrZ0lKEYz1EXH9Qm8m7zfyo3J4tyz34cpCRPAi3Chkf6cZZH/8fgc6MonJnpKn/eQ6rZGtBfM9F/dwNDPtmvXmmZ1EYMjmIzWrEkCKrcQS9NNe4ou1YGw/ivBgJBEa3wK4z/Ey1lW0q+Hdo013Y27fuAkh
X-MS-Exchange-AntiSpam-MessageData-1: zbeakKuWCGi91Q==
X-OriginatorOrg: cs.tcd.ie
X-MS-Exchange-CrossTenant-Network-Message-Id: 78dbdc43-2f1e-44c6-8edb-08da3d90a2ea
X-MS-Exchange-CrossTenant-AuthSource: DB7PR02MB5113.eurprd02.prod.outlook.com
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 24 May 2022 14:21:04.5618 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-CrossTenant-Id: d595be8d-b306-45f4-8064-9e5b82fbe52b
X-MS-Exchange-CrossTenant-MailboxType: HOSTED
X-MS-Exchange-CrossTenant-UserPrincipalName: 32MYCrdeGDw61w2xZ/XoSxyfv4FjfdO3Zy9pjoWuM66TL8Sap8MVua6yPc3ZZC/V
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DB8PR02MB5946
Archived-At: <https://mailarchive.ietf.org/arch/msg/openpgp-dt/hOZobizsAXrcw3v3QoTxSnvnkTE>
Subject: [Openpgp-dt] 2022-05-24 meeting notes
X-BeenThere: openpgp-dt@ietf.org
X-Mailman-Version: 2.1.34
Precedence: list
List-Id: OpenPGP working group design team <openpgp-dt.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/openpgp-dt>, <mailto:openpgp-dt-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/openpgp-dt/>
List-Post: <mailto:openpgp-dt@ietf.org>
List-Help: <mailto:openpgp-dt-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/openpgp-dt>, <mailto:openpgp-dt-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 24 May 2022 14:21:14 -0000
# OpenPGP Design Team 2022-05-24 Present: gniibe stephen daniel huigens dkg paul wouters justus Agenda MRs (any that editor thinks need disussing/checks?) https://gitlab.com/openpgp-wg/rfc4880bis/-/merge_requests/168 editor wasn't clear everyone agreed on this daniel H - text tries to be less hand-wavy than existing (but leaves wriggle-room) paul: what's "valid"? clarified on call dkg: more wonders if self-sig is well defined enough ("if i decide later that i think it's unclear, i can create a separate MR to clarify") daniel H: is defined elsewhere dkg: wfm end-result: ok to merge (done) https://gitlab.com/openpgp-wg/rfc4880bis/-/merge_requests/187 justus: can't tell from FP if truncated or not, maybe offer guidance to only use that when needed for smart-card (and not e.g. for n/w services) dkg: was about to add a sentence until... oops - legacy s/w will go ahead and lookup (e.g. on keyserver) based on truncated fp and could be fooled paul: maybe just leave it to implementations or the smart-card spec? gniibe: there's an unused field CA-FPR in smart-card spec that could be used for v5 key FP octets (the last 12 octets anyway) - could be a useful trick for an update to the smart-card spec dkg: ACTION will change to "don't store v5 fp in v4 field until you've read the updated smart-card spec" once done this should be ready to merge what to do about packets that don't match any grammar? a related pile of MRs: https://gitlab.com/openpgp-wg/rfc4880bis/-/merge_requests/191 https://gitlab.com/openpgp-wg/rfc4880bis/-/merge_requests/190 https://gitlab.com/openpgp-wg/rfc4880bis/-/merge_requests/189 https://gitlab.com/openpgp-wg/rfc4880bis/-/merge_requests/188 dkg reprises discusssion from (non-quorate) meeting last week paul: sounds like there should be some sec-cons text describing the potential problem (that we're trying to mitigate/avoid) on the call !190 seems like the better basis so we should close 191, 188, 189 and proceed to get 190 to where we approve it ACTION: dkg will provide a subsection to Security Considerations section about aliased ciphertext ACTION: (all) read and improve or approve !190 before end of 26th what steps remain before entering WG last call? !190 and !187 as above plus another draft plus aead topic on list We'll leave uncharted MRs open for now daniel H: will suggest security considerations text to recommend including intended recipient FP to prevent surreptitious forwarding attacks Open issues - there's a pile, many tagged already, some could lead to additional sec-cons We'll treat the untagged issues as WGLC comments - we'll also add issues as identified during WGLC so will go back over this list later for sure editor: will add all DT non-WG chairs as authors, paul will check with Jeffrey shepherd is dkg chairs/shepherd: send a call to list to asking about any known IPR IETF 114 (end of July) we do want a session, 2hrs to leave time for many WGLC issues or re-charter discussion if all is rosy SF will request session https://gitlab.com/openpgp-wg/rfc4880bis/-/issues/122 (gitlab change of terms) talk about this next week, not mega-urgent dkg asked 'em something, they want a call
- [Openpgp-dt] 2022-05-24 meeting notes Stephen Farrell