Re: [openpgp] [FORGED] Re: Expiration impending: <draft-ietf-openpgp-rfc4880bis-01.txt>

Werner Koch <wk@gnupg.org> Tue, 04 July 2017 09:44 UTC

Return-Path: <wk@gnupg.org>
X-Original-To: openpgp@ietfa.amsl.com
Delivered-To: openpgp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EB0B5131CCA for <openpgp@ietfa.amsl.com>; Tue, 4 Jul 2017 02:44:33 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.9
X-Spam-Level:
X-Spam-Status: No, score=-6.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_HI=-5] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id rNZFwYxVJhJC for <openpgp@ietfa.amsl.com>; Tue, 4 Jul 2017 02:44:32 -0700 (PDT)
Received: from kerckhoffs.g10code.com (kerckhoffs.g10code.com [IPv6:2001:aa8:fff1:100::22]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 31927131CC8 for <openpgp@ietf.org>; Tue, 4 Jul 2017 02:44:32 -0700 (PDT)
Received: from uucp by kerckhoffs.g10code.com with local-rmail (Exim 4.89 #1 (Debian)) id 1dSKNi-0004Ce-KX for <openpgp@ietf.org>; Tue, 04 Jul 2017 11:44:30 +0200
Received: from wk by wheatstone.g10code.de with local (Exim 4.84 #3 (Debian)) id 1dSKFs-0000yZ-2K; Tue, 04 Jul 2017 11:36:24 +0200
From: Werner Koch <wk@gnupg.org>
To: Peter Gutmann <pgut001@cs.auckland.ac.nz>
Cc: Kristian Fiskerstrand <kristian.fiskerstrand@sumptuouscapital.com>, "openpgp@ietf.org" <openpgp@ietf.org>
References: <149847732613.7086.8580563657011849337.idtracker@ietfa.amsl.com> <CALaySJKxWevOZYv1hOBFV-+3T=2x43vmie50t6ko2A+a-gTS_A@mail.gmail.com> <a3a82aab-a0d9-f044-21c0-26de346bf6b3@sixdemonbag.org> <20170702232541.t25v6mf36qnrxkex@genre.crustytoothpaste.net> <1b5da7bf-d43b-fde5-f6b6-28d9c6fd6edb@gmx.net> <94a05934-4b5c-4fb6-d127-beb0eacb47cf@sixdemonbag.org> <679411c5b2de4c308cbfbb3733c4fe54@usma1ex-dag1mb1.msg.corp.akamai.com> <9fbed93a-e4a7-3d00-1c53-ee587c2dface@o.banes.ch> <c51c709613184522815fa8838897dd2b@usma1ex-dag1mb1.msg.corp.akamai.com> <1499140902730.13818@cs.auckland.ac.nz> <f1b3c9e5-ec8c-d4c2-2ccd-31fa65396440@sumptuouscapital.com> <1499159166033.35059@cs.auckland.ac.nz>
Organisation: The GnuPG Project
X-message-flag: Mails containing HTML will not be read! Please send only plain text.
OpenPGP: url=https://k.gnupg.net/80615870F5BAD690333686D0F2AD85AC1E42B367
Mail-Followup-To: Peter Gutmann <pgut001@cs.auckland.ac.nz>, Kristian Fiskerstrand <kristian.fiskerstrand@sumptuouscapital.com>, "openpgp\@ietf.org" <openpgp@ietf.org>
Date: Tue, 04 Jul 2017 11:36:23 +0200
In-Reply-To: <1499159166033.35059@cs.auckland.ac.nz> (Peter Gutmann's message of "Tue, 4 Jul 2017 09:06:09 +0000")
Message-ID: <877ezosfvs.fsf@wheatstone.g10code.de>
User-Agent: Gnus/5.13 (Gnus v5.13)
MIME-Version: 1.0
Content-Type: multipart/signed; boundary="=virus_satellite_imagery_KGB_Medco_Comirex_Pine_Gap_Bletchley_Park=CN"; micalg="pgp-sha256"; protocol="application/pgp-signature"
Archived-At: <https://mailarchive.ietf.org/arch/msg/openpgp/G99r-A4OQxPrem-yPGJKEwbpwRQ>
Subject: Re: [openpgp] [FORGED] Re: Expiration impending: <draft-ietf-openpgp-rfc4880bis-01.txt>
X-BeenThere: openpgp@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "Ongoing discussion of OpenPGP issues." <openpgp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/openpgp>, <mailto:openpgp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/openpgp/>
List-Post: <mailto:openpgp@ietf.org>
List-Help: <mailto:openpgp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/openpgp>, <mailto:openpgp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 04 Jul 2017 09:44:34 -0000

On Tue,  4 Jul 2017 11:06, pgut001@cs.auckland.ac.nz said:

> For example for file encryption you might have MUST AES, MUST MDC, MUST
> Iterated and Salted S2K (why do the other options even exist?), MUST either

Well we should actually have a dummy S2K for the case that you take a
full entropy passphrase from a database.  Lacking that the Simple S2K is
the next best choice.

> The profile option, rather than rewrite-the-RFC, is fully compatible with

In fact there is already a profile for Suite B in the draft (from
RFC6637).  The German spooks want their Brainpool instead.  Me and many
others would prefer Chicago curves.  Thus, do we need to chnage your
well-know quote to

                    You can't be a real country unless you have a beer and an
                    airline.  It helps if you have some kind of a football
                    team, or some nuclear weapons, but at the very least you
                    need a beer.
                        -- Frank Zappa
                    And an OpenPGP profile.
                        -- OpenPGP WG ?

;-)



Shalom-Salam,

   Werner

-- 
Die Gedanken sind frei.  Ausnahmen regelt ein Bundesgesetz.