[openpgp] Embedded TPK subpacket

Justus Winter <justuswinter@gmail.com> Mon, 25 March 2019 09:20 UTC

Return-Path: <justuswinter@gmail.com>
X-Original-To: openpgp@ietfa.amsl.com
Delivered-To: openpgp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 53C5312037F for <openpgp@ietfa.amsl.com>; Mon, 25 Mar 2019 02:20:51 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2
X-Spam-Level:
X-Spam-Status: No, score=-2 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id VPuY_ef8hCdJ for <openpgp@ietfa.amsl.com>; Mon, 25 Mar 2019 02:20:49 -0700 (PDT)
Received: from mail-wm1-x330.google.com (mail-wm1-x330.google.com [IPv6:2a00:1450:4864:20::330]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A39AC12037B for <openpgp@ietf.org>; Mon, 25 Mar 2019 02:20:49 -0700 (PDT)
Received: by mail-wm1-x330.google.com with SMTP id z24so4874425wmi.5 for <openpgp@ietf.org>; Mon, 25 Mar 2019 02:20:49 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=from:to:subject:date:message-id:mime-version; bh=N4REFOrfi0Dsk+oilFRfrO6PCK21rZrMiWyrvrrng2c=; b=gLI5fNHnuTjzEubWORgVkMvuYWuJu7x3iJONInTeRTnuGRJSegiIMi7IvQCjzqdl69 WwsfPj96V4mCxU6kTYakiySbzCejE4SiCymZItKSuucVxPm/MKJAhmOfWB4fe2GWc3Vb ACvEn6InATFUhcguQg6irvflQupBfboOUbi5YTVcxjbfGBLq/vY9RQfWAOU9QUB7ktAO 2nY2HAZObqccWk6JmbDYouDzvT2ETEU2AdHSCMnJ1D41u6zhatCr8iY0u1hfa2qVKcyN CBmhj5dcQqL38MHmnKqMv6Svhxa6Yd87iD3pdQ7K2jKykXvmzGOv3PmoaDrj0DQbmhXD 20Mw==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:from:to:subject:date:message-id:mime-version; bh=N4REFOrfi0Dsk+oilFRfrO6PCK21rZrMiWyrvrrng2c=; b=blVM4F5T6UEgoB7HGRE/nh3w49ZoF4RMXTsjedGGQuB0Anm/XNZgrcVWgojhiwGXaL ReKUjTsw6KRk21qGvdRXQiyIhYOJZgvGNCJQPFq4szQzQQUsbfqM+18NG5UhXedcI5V7 PKnJ7yCbrlkMLMGQsFRCvaXLE8Po6fm2fCXNHeJQNcj9k6iEemk0SsCsgdLkdp8TTCYu Nf8Il4X/5D6O7HIYqKHZ1VFHFB4/w0N738uPAUhiWYTZZcWU3Goaz3QpS9AE5EISDnBG QDrcef3ps+oybN4hqarWEE0KiSOwwRX67/oZTNQtWxp5KIAmLQ41Qkmn5b2HFsvYOLHO 8Kiw==
X-Gm-Message-State: APjAAAWZp1ovs4gXLBKHeK35ESMR6JRXWi/3JOsW+tfLZgwhFEfVXeM9 b5/rM7vh9JDgQBlErV6Xi4Ag0LTb
X-Google-Smtp-Source: APXvYqzBWITlHxZzWky9HK/N+9dcb4yD0vX9FZsUroJbwaX3JC8AxKoR3Uud23nRv7KUYecZzAzEcA==
X-Received: by 2002:a1c:c6ce:: with SMTP id w197mr11137245wmf.95.1553505648129; Mon, 25 Mar 2019 02:20:48 -0700 (PDT)
Received: from localhost (port-92-193-51-13.dynamic.qsc.de. [92.193.51.13]) by smtp.gmail.com with ESMTPSA id w9sm15535445wmi.0.2019.03.25.02.20.47 for <openpgp@ietf.org> (version=TLS1_2 cipher=ECDHE-RSA-CHACHA20-POLY1305 bits=256/256); Mon, 25 Mar 2019 02:20:47 -0700 (PDT)
From: Justus Winter <justuswinter@gmail.com>
To: openpgp@ietf.org
Date: Mon, 25 Mar 2019 10:20:45 +0100
Message-ID: <87ef6v71jm.fsf@europa.jade-hamburg.de>
MIME-Version: 1.0
Content-Type: multipart/signed; boundary="=-=-="; micalg=pgp-sha256; protocol="application/pgp-signature"
Archived-At: <https://mailarchive.ietf.org/arch/msg/openpgp/F1Wdrldzd3k9tqOos4hmokOV0r0>
Subject: [openpgp] Embedded TPK subpacket
X-BeenThere: openpgp@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Ongoing discussion of OpenPGP issues." <openpgp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/openpgp>, <mailto:openpgp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/openpgp/>
List-Post: <mailto:openpgp@ietf.org>
List-Help: <mailto:openpgp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/openpgp>, <mailto:openpgp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 25 Mar 2019 09:20:51 -0000

Hello,

I'd like to propose a new signature subpacket that contains a TPK,
let's call it the Embedded TPK subpacket.

I see two immediate use cases:

  - If a designated revoker creates a revocation signature, she can
    embed her TPK in the signature, so that it is easy to verify the
    revocation without having to hunt for her TPK.

  - Some MUAs attach TPKs to emails, pEp does so too, and Autocrypt
    includes TPKs in mail headers.  Instead of doing that, one could
    then transmit ones TPK (and those of others in the conversation)
    in-band.  This has the advantage of requiring no cooperation of
    the MUAs, and the PGP implementations can gather the TPKs when
    parsing the signatures.


Thanks,
Justus