Re: OpenPGP Minutes / Quick Summary

<vedaal@hush.com> Thu, 20 July 2006 21:18 UTC

Received: from [10.91.34.44] (helo=ietf-mx.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1G3fuI-00021b-0L for openpgp-archive@lists.ietf.org; Thu, 20 Jul 2006 17:18:06 -0400
Received: from balder-227.proper.com ([192.245.12.227]) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1G3fuF-00008E-JF for openpgp-archive@lists.ietf.org; Thu, 20 Jul 2006 17:18:05 -0400
Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.13.5/8.13.5) with ESMTP id k6KKjV2M019928; Thu, 20 Jul 2006 13:45:31 -0700 (MST) (envelope-from owner-ietf-openpgp@mail.imc.org)
Received: (from majordom@localhost) by balder-227.proper.com (8.13.5/8.13.5/Submit) id k6KKjVxp019927; Thu, 20 Jul 2006 13:45:31 -0700 (MST) (envelope-from owner-ietf-openpgp@mail.imc.org)
X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-openpgp@mail.imc.org using -f
Received: from smtp3.hushmail.com (smtp3.hushmail.com [65.39.178.135]) by balder-227.proper.com (8.13.5/8.13.5) with ESMTP id k6KKjSti019873 for <ietf-openpgp@imc.org>; Thu, 20 Jul 2006 13:45:31 -0700 (MST) (envelope-from vedaal@hush.com)
Received: from smtp3.hushmail.com (localhost.hushmail.com [127.0.0.1]) by smtp3.hushmail.com (Postfix) with SMTP id 3158BA3230 for <ietf-openpgp@imc.org>; Thu, 20 Jul 2006 13:45:26 -0700 (PDT)
Received: from mailserver8.hushmail.com (mailserver8.hushmail.com [65.39.178.61]) by smtp3.hushmail.com (Postfix) with ESMTP for <ietf-openpgp@imc.org>; Thu, 20 Jul 2006 13:45:25 -0700 (PDT)
Received: by mailserver8.hushmail.com (Postfix, from userid 65534) id 310F3DA82E; Thu, 20 Jul 2006 13:45:25 -0700 (PDT)
Date: Thu, 20 Jul 2006 16:45:24 -0400
To: <ietf-openpgp@imc.org>
Cc:
Subject: Re: OpenPGP Minutes / Quick Summary
From: <vedaal@hush.com>
Content-type: text/plain; charset="UTF-8"
Message-Id: <20060720204525.310F3DA82E@mailserver8.hushmail.com>
Sender: owner-ietf-openpgp@mail.imc.org
Precedence: bulk
List-Archive: <http://www.imc.org/ietf-openpgp/mail-archive/>
List-Unsubscribe: <mailto:ietf-openpgp-request@imc.org?body=unsubscribe>
List-ID: <ietf-openpgp.imc.org>
X-Spam-Score: 0.2 (/)
X-Scan-Signature: fb6060cb60c0cea16e3f7219e40a0a81

On Wed, 19 Jul 2006 16:44:13 -0400 Jon Callas <jon@callas.org> 
wrote:

>On the other hand, I think there *is* work still on the table, and 

>there are still people interested in doing it. 

....

>Here is an incomplete list of things that I think are still on the 

>table:

....

>* Interop cookbook. It would be desirable to have an RFC with  
>examples of OpenPGP objects as a help to implementers. This would  

>have, for example, an Alice key, a Bob key, and examples of 
>different other objects. A message encrypted to Alice and signed 
by >Bob with MDC packet, another with non-MDC; Bob's key signed by 
Alice; >and so on.

i would be interested in preparing a comprehesive collection of 
examples,

a minor issue,
is that there for some objects, there is no 'generic' OpenPGP 
object form that is identical for all OpenPGP implementations,
(there is only a more generalized form of the packet types, 
sequence, etc.)

the actual final form of the openPGP object varies somewhat with 
the implementation,
(although each implementation can work with the forms of the 
other),


an example of this,
would be a message encrypted to Alice's v4 RSA key:

in PGP,
the message block armor begins with 'qA'

in GnuPG,
the same message encrypted to the same key, 
begins with 'hQ'

it might be useful to list both variations as examples
of the discretionary leeway available to implementors,
and how they can leave little telltale signs that distinguish
their own implementations,
as long as the essentials of intercompatibility are preserved


in order to not 'overdo' the trivia,
i can start with a tentative list of the example types,
and then have people suggest either addtions or deletions from the 
list


vedaal




Concerned about your privacy? Instantly send FREE secure email, no account required
http://www.hushmail.com/send?l=480

Get the best prices on SSL certificates from Hushmail
https://www.hushssl.com?l=485