Re: [openpgp] A way to securely define cleartext signature charset
Andre Heinecke <aheinecke@intevation.de> Sat, 08 September 2018 18:27 UTC
Return-Path: <aheinecke@intevation.de>
X-Original-To: openpgp@ietfa.amsl.com
Delivered-To: openpgp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BB97C130E3F for <openpgp@ietfa.amsl.com>; Sat, 8 Sep 2018 11:27:33 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.899
X-Spam-Level:
X-Spam-Status: No, score=-1.899 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_NONE=-0.0001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id oFBPYmziY6kD for <openpgp@ietfa.amsl.com>; Sat, 8 Sep 2018 11:27:32 -0700 (PDT)
Received: from kolab.intevation.de (kolab.intevation.de [212.95.107.133]) by ietfa.amsl.com (Postfix) with ESMTP id 54C7C130E37 for <openpgp@ietf.org>; Sat, 8 Sep 2018 11:27:32 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by kolab.intevation.de (Postfix) with ESMTP id 22E5D6243C for <openpgp@ietf.org>; Sat, 8 Sep 2018 20:27:31 +0200 (CEST)
X-Virus-Scanned: by amavisd-new at intevation.de
Received: from kolab.intevation.de ([127.0.0.1]) by localhost (kolab.intevation.de [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 2XQ1pBlOU6Jj for <openpgp@ietf.org>; Sat, 8 Sep 2018 20:27:30 +0200 (CEST)
Received: from localhost (localhost [127.0.0.1]) by kolab.intevation.de (Postfix) with ESMTP id 559356245A for <openpgp@ietf.org>; Sat, 8 Sep 2018 20:27:30 +0200 (CEST)
Received: from esus.localnet (81-5-224-141.hdsl.highway.telekom.at [81.5.224.141]) (Authenticated sender: andre.heinecke@intevation.de) by kolab.intevation.de (Postfix) with ESMTPSA id 28F846243C for <openpgp@ietf.org>; Sat, 8 Sep 2018 20:27:30 +0200 (CEST)
From: Andre Heinecke <aheinecke@intevation.de>
To: openpgp@ietf.org
Date: Sat, 08 Sep 2018 20:27:29 +0200
Message-ID: <11022095.V4M2a8AgS6@esus>
User-Agent: KMail/5.2.3 (Linux/4.9.0-8-amd64; KDE/5.28.0; x86_64; ; )
In-Reply-To: <e7480382-f480-05f2-e525-4f4e36f96433@ruhr-uni-bochum.de>
References: <1803390.QxyNr08ExB@esus> <e7480382-f480-05f2-e525-4f4e36f96433@ruhr-uni-bochum.de>
MIME-Version: 1.0
Content-Type: multipart/signed; boundary="nextPart4746153.78YUkml5oY"; micalg="pgp-sha256"; protocol="application/pgp-signature"
Archived-At: <https://mailarchive.ietf.org/arch/msg/openpgp/1BRSgF8A1HXdtJ-0KzknU675td8>
Subject: Re: [openpgp] A way to securely define cleartext signature charset
X-BeenThere: openpgp@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Ongoing discussion of OpenPGP issues." <openpgp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/openpgp>, <mailto:openpgp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/openpgp/>
List-Post: <mailto:openpgp@ietf.org>
List-Help: <mailto:openpgp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/openpgp>, <mailto:openpgp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sat, 08 Sep 2018 18:27:34 -0000
Hi, On Saturday, September 8, 2018 4:43:25 PM CEST Marcus Brinkmann wrote: > Why not a hashed signature subpacket? Mostly because in an Application you can already use the information from the header before you do any OpenPGP parsing / signature verification. E.g. in a MUA you usually want to show the data while you are verifying the signature. A charset Header could be easily parsed by a MUA and taken as a suggestion how to present the data. There might also be the case where you know the charset was changed in transfer and you have to convert the charset back to get the correct bytestream that matches the signature before passing it to your OpenPGP backend. That is not to say that I'm totally against a subpacket, if the correct charset would be known after verification / parsing it would also help. Best Regards, Andre -- Andre Heinecke | ++49-541-335083-262 | http://www.intevation.de/ Intevation GmbH, Neuer Graben 17, 49074 Osnabrück | AG Osnabrück, HR B 18998 Geschäftsführer: Frank Koormann, Bernhard Reiter, Dr. Jan-Oliver Wagner
- [openpgp] A way to securely define cleartext sign… Andre Heinecke
- Re: [openpgp] A way to securely define cleartext … Peter Pentchev
- Re: [openpgp] A way to securely define cleartext … Marcus Brinkmann
- Re: [openpgp] A way to securely define cleartext … Andre Heinecke
- Re: [openpgp] A way to securely define cleartext … Andre Heinecke
- Re: [openpgp] A way to securely define cleartext … Neil Hunsperger
- Re: [openpgp] A way to securely define cleartext … Jon Callas
- Re: [openpgp] A way to securely define cleartext … Andre Heinecke
- Re: [openpgp] A way to securely define cleartext … Werner Koch
- Re: [openpgp] A way to securely define cleartext … Andre Heinecke
- Re: [openpgp] A way to securely define cleartext … Vincent Breitmoser
- Re: [openpgp] A way to securely define cleartext … Andre Heinecke
- Re: [openpgp] A way to securely define cleartext … Werner Koch
- Re: [openpgp] A way to securely define cleartext … Jon Callas
- Re: [openpgp] A way to securely define cleartext … Jon Callas