IETF Logo Mail Archive

Re: [openpgp] Bug#931238: hot armor: please drop "Version: " header

Marcus Brinkmann <marcus.brinkmann@rub.de> Sat, 06 July 2019 23:56 UTC

Return-Path: <marcus.brinkmann@rub.de>
X-Original-To: openpgp@ietfa.amsl.com
Delivered-To: openpgp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8006712010C for <openpgp@ietfa.amsl.com>; Sat, 6 Jul 2019 16:56:26 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.299
X-Spam-Level:
X-Spam-Status: No, score=-4.299 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_MED=-2.3, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=rub.de
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ATqYgU0Mf6F3 for <openpgp@ietfa.amsl.com>; Sat, 6 Jul 2019 16:56:23 -0700 (PDT)
Received: from out3.mail.ruhr-uni-bochum.de (out3.mail.ruhr-uni-bochum.de [IPv6:2a05:3e00:8:1001::8693:359b]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 2A4201200FD for <openpgp@ietf.org>; Sat, 6 Jul 2019 16:56:23 -0700 (PDT)
Received: from mx3.mail.ruhr-uni-bochum.de (localhost [127.0.0.1]) by out3.mail.ruhr-uni-bochum.de (Postfix mo-ext) with ESMTP id 45h7sH2pyKz8S9C for <openpgp@ietf.org>; Sun, 7 Jul 2019 01:56:19 +0200 (CEST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=rub.de; s=mail-2017; t=1562457379; bh=mtXSpmYn2TiOZW0Om7SJru/AFHTiOQbi0jlxetQ8qXQ=; h=Subject:To:References:From:Date:In-Reply-To:From; b=FRbjRqtvtpTsU4NynXQW+gmCCSP64HMNViErtRsEbZ9AwrFil49SsE82eJz7n+Kff UNXLPXtggVSCWmg8jJ/iPx/BUmqG53ViVQC3kYCPrYF7f26MfZKhacmYZd99IeRJGJ vKPbHa49uZHMe24kCKeMniUnDOwmUABiNQk5/vHc=
Received: from out3.mail.ruhr-uni-bochum.de (localhost [127.0.0.1]) by mx3.mail.ruhr-uni-bochum.de (Postfix idis) with ESMTP id 45h7sH1LNfz8S73 for <openpgp@ietf.org>; Sun, 7 Jul 2019 01:56:19 +0200 (CEST)
X-Envelope-Sender: <marcus.brinkmann@rub.de>
X-RUB-Notes: Internal origin=134.147.42.227
Received: from mail1.mail.ruhr-uni-bochum.de (mail1.mail.ruhr-uni-bochum.de [134.147.42.227]) by out3.mail.ruhr-uni-bochum.de (Postfix mi-int) with ESMTP id 45h7sH0SSgz8S3b for <openpgp@ietf.org>; Sun, 7 Jul 2019 01:56:18 +0200 (CEST)
Received: from [192.168.142.139] (p5DCA4A43.dip0.t-ipconnect.de [93.202.74.67]) by mail1.mail.ruhr-uni-bochum.de (Postfix) with ESMTPSA id 45h7sH0mdBzysc for <openpgp@ietf.org>; Sun, 7 Jul 2019 01:56:19 +0200 (CEST)
To: openpgp@ietf.org
References: <87zhm1o0f7.fsf@fifthhorseman.net> <20190706133941.tw3znn74q4iseiyo@scru.org> <54525144-b7bf-fa79-c497-ca8fbf77f89d@gmx.net>
From: Marcus Brinkmann <marcus.brinkmann@rub.de>
Openpgp: preference=signencrypt
Message-ID: <8d960bb1-0fe8-c2e3-fcf4-4d00ed4adfce@rub.de>
Date: Sun, 07 Jul 2019 01:56:19 +0200
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101 Thunderbird/60.5.1
MIME-Version: 1.0
In-Reply-To: <54525144-b7bf-fa79-c497-ca8fbf77f89d@gmx.net>
Content-Type: text/plain; charset="utf-8"
Content-Language: en-US
Content-Transfer-Encoding: 8bit
X-Virus-Scanned: clamav-milter 0.99.4 at mail1.mail.ruhr-uni-bochum.de
X-Virus-Status: Clean
Archived-At: <https://mailarchive.ietf.org/arch/msg/openpgp/5CngDVKqBqxAUdy3R_ZE2cSMQvs>
X-Mailman-Approved-At: Sun, 07 Jul 2019 11:31:08 -0700
Subject: Re: [openpgp] Bug#931238: hot armor: please drop "Version: " header
X-BeenThere: openpgp@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Ongoing discussion of OpenPGP issues." <openpgp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/openpgp>, <mailto:openpgp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/openpgp/>
List-Post: <mailto:openpgp@ietf.org>
List-Help: <mailto:openpgp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/openpgp>, <mailto:openpgp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 07 Jul 2019 18:08:22 -0000

That seems almost like a bottomless pit.  Some thoughts (not meant to be
exhaustive):

For messages:

1. The embedded timestamp and filename in a literal data packet.
2. The block sizes for partial data packets, and when they are used.
3. The signature subpackets used and their order (hashed and unhashed).
4. Possibly the details of the compression.
5. The length of the base64 encoding.
6. Potentially the order of signature packets.
7. The value of any quick check bytes (some implementations set them to
invalid values to discourage checking them).

For keys:

1. Again the signature subpackets used and their order.
2. Potentially the details of the user id.
3. Algorithm and other preferences and flags.
4. The cryptographic parameters of public keys (RSA exponent etc)
5. S2K count.
6. Possibly resolution of any timestamps.

On 7/6/19 3:55 PM, Heiko Stamer wrote:
> On 06 July 2019 at 15:39, Clint Adams wrote:
> 
>> On Fri, Jun 28, 2019 at 05:38:36PM -0400, Daniel Kahn Gillmor wrote:
>>> "hot armor" currently adds a comment line to its enarmored content:
>>>
>>> Version: hot 0.21.3
>>>
>>> Best practices these days omits indicators of what particular OpenPGP
>>> implementation is in use.   Please do not emit it by default!
>>
>> Should rfc4880bis deprecate this?
> 
> There are many other indicators of a particular OpenPGP implementation
> (e.g. DKGPG uses four-octet packet lengths). If a somehow uniform
> encoding is desired, then IMO a new section "Privacy Considerations"
> should be added to rfc4880bis.
> 
> --
> Heiko
> 
> _______________________________________________
> openpgp mailing list
> openpgp@ietf.org
> https://www.ietf.org/mailman/listinfo/openpgp
> 

-- 
Dipl.-Math. Marcus Brinkmann

Lehrstuhl für Netz- und Datensicherheit
Ruhr Universität Bochum
Universitätsstr. 150, Geb. ID 2/461
D-44780 Bochum

Telefon: +49 (0) 234 / 32-25030
http://www.nds.rub.de/chair/people/mbrinkmann

v2.23.0 | Report a Bug | By Email