Re: Primary subkey subpacket

disastry@saiknes.lv Wed, 14 August 2002 12:43 UTC

Received: from above.proper.com (mail.proper.com [208.184.76.45]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id IAA07111 for <openpgp-archive@odin.ietf.org>; Wed, 14 Aug 2002 08:43:10 -0400 (EDT)
Received: from localhost (localhost [[UNIX: localhost]]) by above.proper.com (8.11.6/8.11.3) id g7ECX7Q11353 for ietf-openpgp-bks; Wed, 14 Aug 2002 05:33:07 -0700 (PDT)
Received: from hackserv.saiknes.lv (hackserv.klinkmann.lv [195.2.103.8]) by above.proper.com (8.11.6/8.11.3) with SMTP id g7ECX4w11347 for <ietf-openpgp@imc.org>; Wed, 14 Aug 2002 05:33:05 -0700 (PDT)
Received: from saiknes.lv (unverified [195.2.103.8]) by hackserv.saiknes.lv (SMTPRCV 0.45) with SMTP id <B0001574812@hackserv.saiknes.lv>; Wed, 14 Aug 2002 14:27:53 0200
Message-ID: <3D5A4CC9.DDE9E3BF@saiknes.lv>
Date: Wed, 14 Aug 2002 14:27:53 +0200
From: disastry@saiknes.lv
X-Mailer: Mozilla 4.79 [en] (Windows NT 5.0; U)
X-Accept-Language: en,lv,ru
MIME-Version: 1.0
To: ietf-openpgp@imc.org
Subject: Re: Primary subkey subpacket
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Sender: owner-ietf-openpgp@mail.imc.org
Precedence: bulk
List-Archive: <http://www.imc.org/ietf-openpgp/mail-archive/>
List-Unsubscribe: <mailto:ietf-openpgp-request@imc.org?body=unsubscribe>
List-ID: <ietf-openpgp.imc.org>
Content-Transfer-Encoding: 7bit

-----BEGIN PGP SIGNED MESSAGE-----
Hash: RIPEMD160

Timo Schulz wrote:
> Recently I stumbled over a problems with multiple subkeys. I know
> PGP doesn't let the user choose the key at all and GPG uses the
> newest key by default. What about a "primary subkey" subpacket
> which is placed on the self signature to force the implementation
> to use a special subkey. The format should be similar to the 
> "primary user id" packet.

where do you want to place it?
in subkey binding sig?
that would be odd..
because this means creating another binding sig (when making new subkey(s)),
and OpenPGP does not allow multiple binding sigs (unlike userid self sig),
and then keyserver problems, etc..

I think it may be better to put this in userid self sig
(this would allow different subkeys for different userids),
but then format can't be like "primary user id" (5.2.3.19.) subpacket,
it can be like Issuer (5.2.3.5.) or even better
like Revocation key (5.2.3.15.) subpacket

__
Disastry  http://disastry.dhs.org/
-----BEGIN PGP SIGNATURE-----
Version: Netscape PGP half-Plugin 0.15 by Disastry / PGPsdk v1.7.1

iQA/AwUBPVowpzBaTVEuJQxkEQMe1wCfUxOwO6zizzYmI40Gfl4pRxU4oK8AoNH8
/Zbj9VsWRMLt5Y/OOPPcUnw+
=c2b8
-----END PGP SIGNATURE-----