IETF Logo Mail Archive

Re: [openpgp] Revoking Keys: Adding a superceded-by parameter

Daniel Kahn Gillmor <dkg@fifthhorseman.net> Wed, 05 August 2015 04:57 UTC

Return-Path: <dkg@fifthhorseman.net>
X-Original-To: openpgp@ietfa.amsl.com
Delivered-To: openpgp@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4C4F31B29F9 for <openpgp@ietfa.amsl.com>; Tue, 4 Aug 2015 21:57:01 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 5mGWHEfy9Xis for <openpgp@ietfa.amsl.com>; Tue, 4 Aug 2015 21:56:58 -0700 (PDT)
Received: from che.mayfirst.org (che.mayfirst.org [209.234.253.108]) by ietfa.amsl.com (Postfix) with ESMTP id BC4F61B29B0 for <openpgp@ietf.org>; Tue, 4 Aug 2015 21:56:58 -0700 (PDT)
Received: from fifthhorseman.net (unknown [38.109.115.130]) by che.mayfirst.org (Postfix) with ESMTPSA id EE169F984; Wed, 5 Aug 2015 00:56:57 -0400 (EDT)
Received: by fifthhorseman.net (Postfix, from userid 1000) id DCDA92010F; Wed, 5 Aug 2015 06:56:47 +0200 (CEST)
From: Daniel Kahn Gillmor <dkg@fifthhorseman.net>
To: "Neal H. Walfield" <neal@walfield.org>
In-Reply-To: <87h9osnswg.wl-neal@walfield.org>
References: <87wpxvjf9d.wl-neal@walfield.org> <87d1zmlv3p.fsf@vigenere.g10code.de> <87twsyk35z.wl-neal@walfield.org> <87y4i9je9f.fsf@alice.fifthhorseman.net> <87h9osnswg.wl-neal@walfield.org>
User-Agent: Notmuch/0.20.2 (http://notmuchmail.org) Emacs/24.5.1 (x86_64-pc-linux-gnu)
Date: Wed, 05 Aug 2015 00:56:47 -0400
Message-ID: <87wpxa1gfk.fsf@alice.fifthhorseman.net>
MIME-Version: 1.0
Content-Type: text/plain
Archived-At: <http://mailarchive.ietf.org/arch/msg/openpgp/14il7Ipgw4GCimz17jLXeyFzb8c>
Cc: IETF OpenPGP <openpgp@ietf.org>
Subject: Re: [openpgp] Revoking Keys: Adding a superceded-by parameter
X-BeenThere: openpgp@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "Ongoing discussion of OpenPGP issues." <openpgp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/openpgp>, <mailto:openpgp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/openpgp/>
List-Post: <mailto:openpgp@ietf.org>
List-Help: <mailto:openpgp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/openpgp>, <mailto:openpgp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 05 Aug 2015 04:57:01 -0000

Hi Neal--

Thanks for this.  Having a concrete proposal to work from is really
useful.

On Sat 2015-07-25 11:44:47 -0400, Neal H. Walfield wrote:
> From 6160a4f49c23b35f8cc7105197ecb145aa6be9ad Mon Sep 17 00:00:00 2001
> From: "Neal H. Walfield" <neal@gnu.org>
> Date: Sat, 25 Jul 2015 17:42:23 +0200
> Subject: [PATCH] RFC4880bis: Describe the superseceded-by notation.
>
> ---
>  misc/id/rfc4880bis/middle.mkd | 12 ++++++++++++
>  1 file changed, 12 insertions(+)
>
> diff --git a/misc/id/rfc4880bis/middle.mkd b/misc/id/rfc4880bis/middle.mkd
> index 80c0a61..6465019 100644
> --- a/misc/id/rfc4880bis/middle.mkd
> +++ b/misc/id/rfc4880bis/middle.mkd
> @@ -1317,6 +1317,18 @@ addresses.
>  If there is a critical notation, the criticality applies to that
>  specific notation and not to notations in general.
>  
> +The following notations are currently defined:
> +
> +       superseded-by: This notation is used within a "Reason for
> +       Revocation" subpacket to indicate the key that superscedes this
> +       one.  The value of the notation SHOULD be an OpenPGP message
> +       containing the fingerprint of the new key printed in
> +       hexadecimal form and signed with the new key.  If no key
> +       supersedes this key, the value may instead be the 4 character
> +       ASCII string "none".  This notation should only be respected if
> +       the "Reason for Revocation" subpacket does not indicate that
> +       the key was compromised (code: 2).
> +
>  #### {5.2.3.17} Key Server Preferences
>  
>  (N octets of flags)

A couple questions about this:

 * Why structure the notation data contents as human-readable text?
   for well-structured data, binary seems more efficient.

 * Why allow "none" -- if there is no key superceding the existing key,
   then this notation would simply not be present.

 * Why use the OpenPGP fingerprint?  we're in the process of trying to
   improve things like designated revoker to avoid having cryptographic
   assertions bound to the fingerprint.  What if we just included the
   full OpenPGP public key packet here instead?  Implementations that
   care about the fingerprint can derive the fingerprint from the public
   key packet if they need to, but if we embed the full public key
   packet the cryptographic assertion doesn't need to depend on the
   strength of the fingerprinting mechanism.

Regards,

   --dkg

v2.23.0 | Report a Bug | By Email