Re: [openpgp] considering other OpenPGP work
Andrew Gallagher <andrewg@andrewg.com> Fri, 05 April 2024 12:12 UTC
Return-Path: <andrewg@andrewg.com>
X-Original-To: openpgp@ietfa.amsl.com
Delivered-To: openpgp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 38CDDC151717 for <openpgp@ietfa.amsl.com>; Fri, 5 Apr 2024 05:12:39 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.097
X-Spam-Level:
X-Spam-Status: No, score=-2.097 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=andrewg.com
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id T6Dhnlud-fVM for <openpgp@ietfa.amsl.com>; Fri, 5 Apr 2024 05:12:34 -0700 (PDT)
Received: from fum.andrewg.com (fum.andrewg.com [135.181.198.78]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8EF02C14F5F6 for <openpgp@ietf.org>; Fri, 5 Apr 2024 05:12:33 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=andrewg.com; s=andrewg-com; t=1712319150; bh=WE2LL8E0g/2gIKS/yA4/9xAtBWqL7KfAPE5e6xM4Ebs=; h=Subject:From:In-Reply-To:Date:Cc:References:To:From; b=uMbkbzL6386IatENm1cqtc5yXE7ADhLujS2GAztA/obM/pMzPTnotxMgw1Xb/RzV3 CL1J6UskmJYv7pFXzHghNMITL2sa210+WloetlX6GSVHz2f3oGPD9OuynZRop5RbOz mnGG89WaKg0nbjYoHMoAGy2ffASBDzt8EPGzQ3SJa5/2sfpiRofjQZxfRgqPANW07z HIct5/6Q27fX5KOMdRHxaNYHC9KRqLF0kRFaFJxhZsa6SO3wdksP/dWCQltnUqUChD c/q6/vWqMN8ECs8AzXb51Tp6sOa6WQ+vbTCz/1bwP73NGQf8FIpQsWnx1BOLaCOLdZ vPxK2wuzsJgUA==
Received: from smtpclient.apple (serenity [IPv6:fc93:5820:7349:eda2:99a7::1]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by fum.andrewg.com (Postfix) with ESMTPSA id 869FC5DC4C; Fri, 5 Apr 2024 12:12:30 +0000 (UTC)
Content-Type: multipart/signed; boundary="Apple-Mail=_65BD3981-32E5-4132-8275-F1EA9111A584"; protocol="application/pgp-signature"; micalg="pgp-sha512"
Mime-Version: 1.0 (Mac OS X Mail 16.0 \(3731.700.6.1.1\))
From: Andrew Gallagher <andrewg@andrewg.com>
In-Reply-To: <87y19sg7js.fsf@fifthhorseman.net>
Date: Fri, 05 Apr 2024 13:12:14 +0100
Cc: openpgp@ietf.org
Message-Id: <287ED35F-54C9-46DE-A8A1-69F9D9448B44@andrewg.com>
References: <87y19sg7js.fsf@fifthhorseman.net>
To: Daniel Kahn Gillmor <dkg@fifthhorseman.net>
X-Mailer: Apple Mail (2.3731.700.6.1.1)
Archived-At: <https://mailarchive.ietf.org/arch/msg/openpgp/FdKennEntF4ZaR_UO82m_fe_ea0>
Subject: Re: [openpgp] considering other OpenPGP work
X-BeenThere: openpgp@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "Ongoing discussion of OpenPGP issues." <openpgp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/openpgp>, <mailto:openpgp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/openpgp/>
List-Post: <mailto:openpgp@ietf.org>
List-Help: <mailto:openpgp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/openpgp>, <mailto:openpgp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 05 Apr 2024 12:12:39 -0000
On 4 Apr 2024, at 22:08, Daniel Kahn Gillmor <dkg@fifthhorseman.net> wrote: > > In the same list of documents, i see this individual draft about > replacement keys, from Daphne Shaw and Andrew Gallagher, which appears > to cover the idea of "superseded keys" mentioned in the milestones: > > https://datatracker.ietf.org/doc/draft-gallagher-openpgp-replacementkey/ > > Daniel, Daphne, Andrew, are these documents anything that you would be > interested in considering for working group adoption? If so, please > take a minute and write a paragraph or two to the list here about the > draft and why you think it would be useful for us to consider it as a > group. Yes, I was planning to bring this up at the last meeting but disease and lack of time prevented it. :-) There is currently no standardised method for a key owner to refer their correspondents to a new key that the owner would prefer to use. This will become particularly important as we manage the v4-v6 transition. Daphne wrote a draft several years ago that I believe definess an elegant solution to this problem, and we have worked together to bring it up to date with modern practice. The draft is very lightweight - it defines a signature subpacket with a similar format to the Issuer Fingerprint and Intended Recipient subpackets, but it is also capable of holding an explicit null value. It is intended for use on a self-signature only, to indicate the fingerprint of a key that the key owner wishes their correspondents to use instead. It is specifically not restricted to revocations, and so allows the new key to be specified in advance of the old key’s expiry date. The explicit null value is used to indicate that there is no replacement key (as opposed to being merely undefined). No trust value should be inferred from the mere existence of a Replacement Key subpacket. We believe this is a key component in the migration process to v6 and/or PQC, as it allows clients to automatically upgrade their correspondence to use more modern keys without user intervention (contingent on the usual trust calculations). We therefore ask the WG to adopt it for publication on the standards track. > If anyone else has other work that they would like the working group to > consider as a possible work item in the near future, now might also be a > good time to propose it, so that the working group can consider it. Aside from the above, I have been working on updating Daphne’s HKP draft. This is at a less advanced stage than the above, but is more complex and would benefit from additional eyes. https://datatracker.ietf.org/doc/html/draft-gallagher-openpgp-hkp I would like it to be adopted once the WG feels it has capacity. In the meantime, if people have time to read the latest draft and would like to speak up on the issue tracker it would be most welcome, as there are several outstanding questions. https://gitlab.com/andrewgdotcom/draft-gallagher-openpgp-hkp Further down the line, I would personally like to see progress on revocations and 1pa3pc. :-) A
- [openpgp] considering other OpenPGP work Daniel Kahn Gillmor
- Re: [openpgp] considering other OpenPGP work Andrew Gallagher
- Re: [openpgp] persistent symmetric keys Daniel Huigens
- Re: [openpgp] considering other OpenPGP work Daniel Huigens
- Re: [openpgp] considering other OpenPGP work Andrew Gallagher
- [openpgp] persistent symmetric keys Michael Richardson
- Re: [openpgp] persistent symmetric keys Andrew Gallagher
- Re: [openpgp] persistent symmetric keys Daniel Huigens
- Re: [openpgp] persistent symmetric keys Andrew Gallagher
- Re: [openpgp] persistent symmetric keys Daniel Huigens
- Re: [openpgp] considering other OpenPGP work Falko Strenzke