Re: bis04: revocation key nits
Jon Callas <jon@callas.org> Thu, 18 April 2002 01:30 UTC
Received: from above.proper.com (above.proper.com [208.184.76.39]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id VAA12608 for <openpgp-archive@lists.ietf.org>; Wed, 17 Apr 2002 21:30:03 -0400 (EDT)
Received: by above.proper.com (8.11.6/8.11.3) id g3I1IGC12347 for ietf-openpgp-bks; Wed, 17 Apr 2002 18:18:16 -0700 (PDT)
Received: from merrymeet.com (merrymeet.com [63.73.97.162]) by above.proper.com (8.11.6/8.11.3) with ESMTP id g3I1IFm12343 for <ietf-openpgp@imc.org>; Wed, 17 Apr 2002 18:18:15 -0700 (PDT)
Received: from [192.168.1.97] (63.84.37.127) by merrymeet.com with ESMTP (Eudora Internet Mail Server 3.1.1); Wed, 17 Apr 2002 18:17:57 -0700
Mime-Version: 1.0
Message-Id: <p0510158cb8e3cae4eb63@[192.168.1.97]>
In-Reply-To: <20020418004918.GA661@akamai.com>
References: <20020418004918.GA661@akamai.com>
Date: Wed, 17 Apr 2002 18:13:34 -0700
To: David Shaw <dshaw@jabberwocky.com>, ietf-openpgp@imc.org
From: Jon Callas <jon@callas.org>
Subject: Re: bis04: revocation key nits
Content-Type: text/plain; charset="us-ascii"
Sender: owner-ietf-openpgp@mail.imc.org
Precedence: bulk
List-Archive: <http://www.imc.org/ietf-openpgp/mail-archive/>
List-Unsubscribe: <mailto:ietf-openpgp-request@imc.org?body=unsubscribe>
List-ID: <ietf-openpgp.imc.org>
At 8:49 PM -0400 4/17/02, David Shaw wrote: >The first item is that there is no way to revoke a 0x1F signature. >Since the designated revoker information is contained in an 0x1F >signature, this means that once a user designates a designated >revoker, the user cannot later undo the designation if circumstances >change. > >I'd like to request a new signature class to indicate a 0x1F >revocation or an expansion of the meaning of one of the existing >revocation signature classes to include 0x1F signatures. It is the intent of the designated revoker feature that it cannot be revoked. Otherwise it's too hairy for words. Here's a scenario: Suppose Alice is your designated revoker. You discover that your key is being used by persons unknown for purposes you don't approve of -- oh, like spending your money. Let's also assume that you no longer have the secret key (let's say your laptop was stolen). You visit Alice, explaining the problem, and she generates a revocation for your certificate. After all, that's why she's your revoker. Alice sends it to the world. Or you send it to the world for Alice. The next day, a merchant cashes another bogus check. You call up the merchant and ask, "What the heck are you doing? Didn't you see Alice's revocation of that key." The merchant replies, "Yeah, but I also have a revocation of Alice's revoker status dated April 1, 1999." How do you revoke your key if the revocation can be revoked? If your key is compromised, the person who has it can do anything they want, including revoke your revoker. The designated revoker might as well not be there if it's not irrevocable. Now it's true, we also have an irrevocability subpacket. But nonetheless, it can't be revocable. Jon
- bis04: revocation key nits David Shaw
- Re: bis04: revocation key nits Jon Callas
- Re: bis04: revocation key nits David Shaw