[ISSUE] V2 PKESK advice is not correct
David Shaw <dshaw@jabberwocky.com> Sat, 22 January 2005 15:07 UTC
Received: from above.proper.com (above.proper.com [208.184.76.39]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id KAA08644 for <openpgp-archive@lists.ietf.org>; Sat, 22 Jan 2005 10:07:25 -0500 (EST)
Received: from above.proper.com (localhost.vpnc.org [127.0.0.1]) by above.proper.com (8.12.11/8.12.9) with ESMTP id j0MEoxST009241; Sat, 22 Jan 2005 06:50:59 -0800 (PST) (envelope-from owner-ietf-openpgp@mail.imc.org)
Received: (from majordom@localhost) by above.proper.com (8.12.11/8.12.9/Submit) id j0MEoxns009240; Sat, 22 Jan 2005 06:50:59 -0800 (PST)
X-Authentication-Warning: above.proper.com: majordom set sender to owner-ietf-openpgp@mail.imc.org using -f
Received: from rwcrmhc12.comcast.net (rwcrmhc12.comcast.net [216.148.227.85]) by above.proper.com (8.12.11/8.12.9) with ESMTP id j0MEoxU9009230 for <ietf-openpgp@imc.org>; Sat, 22 Jan 2005 06:50:59 -0800 (PST) (envelope-from dshaw@grover.jabberwocky.com)
Received: from walrus.ne.client2.attbi.com ([24.60.132.70]) by comcast.net (rwcrmhc12) with ESMTP id <2005012214504901400hecupe>; Sat, 22 Jan 2005 14:50:49 +0000
Received: from grover.jabberwocky.com ([172.24.84.28]) by walrus.ne.client2.attbi.com (8.12.8/8.12.8) with ESMTP id j0MEomff027240 for <ietf-openpgp@imc.org>; Sat, 22 Jan 2005 09:50:48 -0500
Received: from grover.jabberwocky.com (grover.jabberwocky.com [127.0.0.1]) by grover.jabberwocky.com (8.13.1/8.13.1) with ESMTP id j0MEoLZE023046 for <ietf-openpgp@imc.org>; Sat, 22 Jan 2005 09:50:21 -0500
Received: (from dshaw@localhost) by grover.jabberwocky.com (8.13.1/8.13.1/Submit) id j0MEoLWU023045 for ietf-openpgp@imc.org; Sat, 22 Jan 2005 09:50:21 -0500
Date: Sat, 22 Jan 2005 09:50:21 -0500
From: David Shaw <dshaw@jabberwocky.com>
To: ietf-openpgp@imc.org
Subject: [ISSUE] V2 PKESK advice is not correct
Message-ID: <20050122145021.GA23013@jabberwocky.com>
Mail-Followup-To: ietf-openpgp@imc.org
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
OpenPGP: id=99242560; url=http://www.jabberwocky.com/david/keys.asc
User-Agent: Mutt/1.5.6i
Sender: owner-ietf-openpgp@mail.imc.org
Precedence: bulk
List-Archive: <http://www.imc.org/ietf-openpgp/mail-archive/>
List-Unsubscribe: <mailto:ietf-openpgp-request@imc.org?body=unsubscribe>
List-ID: <ietf-openpgp.imc.org>
In section 14 of bis-12, one of the "Implementation Nits", after mentioning that V2 and V3 keys are identical except for the version number, adds: Similarly, these versions generated V2 PKESK packets (Tag 1). An implementation may accept or reject V2 PKESK packets as it sees fit, and MUST NOT generate them. While the V2 and V3 Public Key Packets are indeed identical except for the version number, this is not true for the V2 and V3 PKESK packets. Somewhere in the PGP 2.3 timeframe, the encoding of the session key was changed, but the PKESK version number was not changed. Thus there are pre-2.3 V2 PKESK packets that are not identical to post-2.3 V2 PKESK packets. Rather than documenting all that in 2440bis and giving the different encodings, and since V2 packets are well beyond deprecated at this point, I suggest just dropping the whole sentence beginning "Similarly, these versions generated V2...." David
- [ISSUE] V2 PKESK advice is not correct David Shaw