IETF Logo Mail Archive

[openpgp] Re: I-D Action: draft-ietf-openpgp-replacementkey-02.txt

Daniel Huigens <d.huigens@protonmail.com> Mon, 27 January 2025 16:37 UTC

Return-Path: <d.huigens@protonmail.com>
X-Original-To: openpgp@ietfa.amsl.com
Delivered-To: openpgp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CFE80C1D3DD2 for <openpgp@ietfa.amsl.com>; Mon, 27 Jan 2025 08:37:54 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.104
X-Spam-Level:
X-Spam-Status: No, score=-2.104 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.001, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, RCVD_IN_VALIDITY_SAFE_BLOCKED=0.001, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=unavailable autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=protonmail.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 7BvC8NW6b5Wi for <openpgp@ietfa.amsl.com>; Mon, 27 Jan 2025 08:37:50 -0800 (PST)
Received: from mail-4322.protonmail.ch (mail-4322.protonmail.ch [185.70.43.22]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-256)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A8C96C1388B9 for <openpgp@ietf.org>; Mon, 27 Jan 2025 08:37:50 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=protonmail.com; s=protonmail3; t=1737995868; x=1738255068; bh=mbbd2grgA1iBR5ud6vyNvxhqFnhe0s6TVGnwYHCxJdg=; h=Date:To:From:Cc:Subject:Message-ID:In-Reply-To:References: Feedback-ID:From:To:Cc:Date:Subject:Reply-To:Feedback-ID: Message-ID:BIMI-Selector:List-Unsubscribe:List-Unsubscribe-Post; b=egkULC2v4EKGZsgmt9CaAbTzViaVVCPnlLBk8yLUuIHMs6iaRTDbpMivYxPBk9Mgg qYS/A7Kxn2zaLvJ4O4Qy958tRnL1gBiIBJ/+VH60UeKU0mPb6cLBj8OBIz0HKVF4/e RJqfWZNM9xyCna5iKcLQoV1yfNfB2Ym4lUlrtLEY64XT5aM7cMMUEp60U4TvAOW5+z RIPQQI8ptRiR9ZDqpABT1FY5nh9Bfe4SKL0RDNVZbAWbbK9nPSqv4b43w9dn6PfMuR wJrEiO3nq7KovPrLFmcuTGFbHIuz2pnsQgL8/8lX6qMuZP1QWvi0RbiKlf75lAZ7aA Urbx9wgPks1LQ==
Date: Mon, 27 Jan 2025 16:37:43 +0000
To: Andrew Gallagher <andrewg=40andrewg.com@dmarc.ietf.org>
From: Daniel Huigens <d.huigens@protonmail.com>
Message-ID: <BEeS2ActRDMBc7u_4OgmX06FsbP4SQRe-bS1rRTWUUjJEay00OYlNcp7hxhHwCY3Y1dMU3XKXF346dBAVwiQrGxvJKz6iznQyNC1u9LC1Cs=@protonmail.com>
In-Reply-To: <EFF27E24-69BE-41E1-B595-6818E7BD65AC@andrewg.com>
References: <173264571597.581885.1047714570419252899@dt-datatracker-5679c9c6d-qbvvv> <14B07CCC-BD69-4302-9E1C-96B853942C5F@andrewg.com> <cb1627a3-1257-4177-9917-9ea7d73652b1@mtg.de> <EEED1E4F-973E-4424-88F0-5D81BD6F997F@andrewg.com> <2649917e-59f4-4f9a-a3fb-b348061a3f35@mtg.de> <2014BBED-66A4-4C75-8F53-C272028358B7@andrewg.com> <EFF27E24-69BE-41E1-B595-6818E7BD65AC@andrewg.com>
Feedback-ID: 2934448:user:proton
X-Pm-Message-ID: 160f63605689446c24bbd1882b007328be9c53d3
MIME-Version: 1.0
Content-Type: multipart/alternative; boundary="b1=_PuUXLLquD5FEwQ6OZ1mhJFvFrqAuEJtX3wa1g26q7E"
Message-ID-Hash: VK7Y56OPBPZ7FEQNOVUFSLUFES4JWCVD
X-Message-ID-Hash: VK7Y56OPBPZ7FEQNOVUFSLUFES4JWCVD
X-MailFrom: d.huigens@protonmail.com
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-openpgp.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: Johannes Roth <johannes.roth@mtg.de>, IETF OpenPGP WG <openpgp@ietf.org>
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [openpgp] Re: I-D Action: draft-ietf-openpgp-replacementkey-02.txt
List-Id: "Ongoing discussion of OpenPGP issues." <openpgp.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/openpgp/6LkpvnIYH8jMCiYem1iwafv4jQw>
List-Archive: <https://mailarchive.ietf.org/arch/browse/openpgp>
List-Help: <mailto:openpgp-request@ietf.org?subject=help>
List-Owner: <mailto:openpgp-owner@ietf.org>
List-Post: <mailto:openpgp@ietf.org>
List-Subscribe: <mailto:openpgp-join@ietf.org>
List-Unsubscribe: <mailto:openpgp-leave@ietf.org>

Hi Andrew & Johannes & all,

On Friday, January 24th, 2025 at 18:32, Andrew Gallagher wrote:

>> An implementation MUST NOT assume that Key Equivalence Bindings have any permanent significance. (...)
>
> Is the above clarification acceptable to the WG?

This makes sense to me. The implementation will (need to) evaluate the binding at the time that it wants to use (one of) the keys, which seems natural.

>>> B might want to state "I am a replacement for A". But in doing so, B forms an equivalence binding with A and legitimates the use of A's subkeys. Do we need a possibility to state "I replace this key but I don't want anyone to use it as fallback”?

I'm not sure this makes sense to me; can't/shouldn't I just revoke or expire key A in that case? Also, A will only be used as a fallback to B if the sending implementation doesn't support key B. Is there any use case to being able to say something like, "existing correspondents may continue to communicate with me using key A, but new correspondents (looking up my key from a keyserver) must use key B, even if they don't support it"? That seems like a strange request to me.

Best,
Daniel

v2.34.0 | Report a Bug | By Email | System Status