IETF Logo Mail Archive

Split Implementations of PGP

Eric Burger <eburger@brooktrout.com> Fri, 11 March 2005 17:47 UTC

Received: from above.proper.com (above.proper.com [208.184.76.39]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id MAA20612 for <openpgp-archive@lists.ietf.org>; Fri, 11 Mar 2005 12:47:16 -0500 (EST)
Received: from above.proper.com (localhost.vpnc.org [127.0.0.1]) by above.proper.com (8.12.11/8.12.9) with ESMTP id j2BHBJK3008298; Fri, 11 Mar 2005 09:11:19 -0800 (PST) (envelope-from owner-ietf-openpgp@mail.imc.org)
Received: (from majordom@localhost) by above.proper.com (8.12.11/8.12.9/Submit) id j2BHBJE1008297; Fri, 11 Mar 2005 09:11:19 -0800 (PST)
X-Authentication-Warning: above.proper.com: majordom set sender to owner-ietf-openpgp@mail.imc.org using -f
Received: from salvelinus.brooktrout.com (salvelinus.brooktrout.com [204.176.205.6]) by above.proper.com (8.12.11/8.12.9) with ESMTP id j2BHBIYj008288 for <ietf-openpgp@imc.org>; Fri, 11 Mar 2005 09:11:18 -0800 (PST) (envelope-from eburger@brooktrout.com)
Received: from nhmail2.needham.brooktrout.com (nhmail2.brooktrout.com [204.176.205.242]) by salvelinus.brooktrout.com (8.12.5/8.12.5) with ESMTP id j2BH97H0012311; Fri, 11 Mar 2005 12:09:07 -0500 (EST)
Received: by nhmail2.brooktrout.com with Internet Mail Service (5.5.2653.19) id <FRSFG83M>; Fri, 11 Mar 2005 12:05:08 -0500
Message-ID: <EDD694D47377D7119C8400D0B77FD33101125D39@nhmail2.brooktrout.com>
From: Eric Burger <eburger@brooktrout.com>
To: ietf-openpgp@imc.org
Cc: "Glenn Parsons (E-mail)" <gparsons@nortelnetworks.com>
Subject: Split Implementations of PGP
Date: Fri, 11 Mar 2005 12:04:59 -0500
MIME-Version: 1.0
X-Mailer: Internet Mail Service (5.5.2653.19)
Content-Type: text/plain; charset="iso-8859-1"
Sender: owner-ietf-openpgp@mail.imc.org
Precedence: bulk
List-Archive: <http://www.imc.org/ietf-openpgp/mail-archive/>
List-Unsubscribe: <mailto:ietf-openpgp-request@imc.org?body=unsubscribe>
List-ID: <ietf-openpgp.imc.org>

Background:
I am a co-chair of the lemonade work group in the IETF
<http://www.ietf.org/html.charters/lemonade-charter.html>.

One thing we would like to do is enable a remote client to fetch the
encrypted session key from an IMAP server, decrypt the key using the
client's key, and then handing back the clear session key to the IMAP server
to decrypt or verify a message or body part.

So, the question is, are there implementations of PGP where one can:
1. Extract the encrypted session key from the PGP-encrypted object
2. An API for handing over the encrypted session key and the client key,
returning the clear session key (this would run on the remote client).
3. An API that takes the clear session key and the PGP-encrypted object and
returns the cleartext object.

Note that this is different from the normal case of an API that takes the
client's key and the PGP-encrypted object and simply returns the cleartext
object.

We have heard from the S/MIME community that there are API's that allow this
functionality over S/MIME.

Thanks.

v2.23.0 | Report a Bug | By Email