IETF Logo Mail Archive

Re: [openpgp] A way to securely define cleartext signature charset

Jon Callas <joncallas@icloud.com> Mon, 10 September 2018 23:53 UTC

Return-Path: <joncallas@icloud.com>
X-Original-To: openpgp@ietfa.amsl.com
Delivered-To: openpgp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 8D6AA130F74 for <openpgp@ietfa.amsl.com>; Mon, 10 Sep 2018 16:53:09 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.699
X-Spam-Level:
X-Spam-Status: No, score=-2.699 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=icloud.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id lRQX06kW09Bd for <openpgp@ietfa.amsl.com>; Mon, 10 Sep 2018 16:53:07 -0700 (PDT)
Received: from st13p27im-asmtp004.me.com (st13p27im-asmtp004.me.com [17.162.190.113]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A8C4A130E14 for <openpgp@ietf.org>; Mon, 10 Sep 2018 16:53:07 -0700 (PDT)
Received: from process-dkim-sign-daemon.st13p27im-asmtp004.me.com by st13p27im-asmtp004.me.com (Oracle Communications Messaging Server 8.0.2.2.20180531 64bit (built May 31 2018)) id <0PEV018005W5NP00@st13p27im-asmtp004.me.com> for openpgp@ietf.org; Mon, 10 Sep 2018 23:53:07 +0000 (GMT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=icloud.com; s=04042017; t=1536623586; bh=4+Sub64VI44cwzzBzvd/HPm6bUOCQlpoFRkZ8b7ZErE=; h=From:Message-id:Content-type:MIME-version:Subject:Date:To; b=QuhoYx7HK99+8W9E2irPC9rrCxmArew5aN3rcA+7+9QCEjmgO4P8wqdlnO6QvdGr4 qgbc1J0OOrf1MNzK6R/8q6rHD9H8TPRGiPAHhY4H/xyoovrDmJ527pRFJbZSr4cpme ogKvw23hwMSVmPKpxp/y4kuwCxB7dVIfRj98c9f3faoalXm0wI8/QC1jfPIssn8iD2 MDhZQfc0Ay/sP92l31k6GGoC4m4lzy9A1W82Qi0QTUP0kKF4UzG48X3pFYs/5zHleJ 8D23/CLtQ8ANTkQe2RA4IDcJAIAb2wU7ej544ROXqlcbqccIW1MQbHystIBsf0Grih w3FoWsG8JCP4Q==
Received: from icloud.com ([127.0.0.1]) by st13p27im-asmtp004.me.com (Oracle Communications Messaging Server 8.0.2.2.20180531 64bit (built May 31 2018)) with ESMTPSA id <0PEV00CZ86CGFS20@st13p27im-asmtp004.me.com>; Mon, 10 Sep 2018 23:53:06 +0000 (GMT)
X-Proofpoint-Spam-Details: rule=notspam policy=default score=0 spamscore=0 clxscore=1011 suspectscore=0 malwarescore=0 phishscore=0 adultscore=0 bulkscore=0 classifier=spam adjust=0 reason=mlx scancount=1 engine=8.0.1-1707230000 definitions=main-1809100236
X-Proofpoint-Virus-Version: vendor=fsecure engine=2.50.10434:,, definitions=2018-09-10_11:,, signatures=0
From: Jon Callas <joncallas@icloud.com>
Message-id: <8B546F88-AD17-4EBE-B8F8-F2D72D02CE8A@icloud.com>
Content-type: multipart/alternative; boundary="Apple-Mail=_DAF4BDE3-1C36-4D62-9B7A-582E3E63A7D2"
MIME-version: 1.0 (Mac OS X Mail 11.5 \(3445.9.1\))
Date: Mon, 10 Sep 2018 16:53:03 -0700
In-reply-to: <BY2PR16MB0278DB57063BDB6F519B882BE9050@BY2PR16MB0278.namprd16.prod.outlook.com>
Cc: Jon Callas <joncallas@icloud.com>, Andre Heinecke <aheinecke@intevation.de>, IETF OpenPGP <openpgp@ietf.org>
To: Neil Hunsperger <Neil_Hunsperger=40symantec.com@dmarc.ietf.org>
References: <BY2PR16MB0278DB57063BDB6F519B882BE9050@BY2PR16MB0278.namprd16.prod.outlook.com>
X-Mailer: Apple Mail (2.3445.9.1)
Archived-At: <https://mailarchive.ietf.org/arch/msg/openpgp/HDQNalAmp_dj9SnRUT6m6Wfg3go>
Subject: Re: [openpgp] A way to securely define cleartext signature charset
X-BeenThere: openpgp@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Ongoing discussion of OpenPGP issues." <openpgp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/openpgp>, <mailto:openpgp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/openpgp/>
List-Post: <mailto:openpgp@ietf.org>
List-Help: <mailto:openpgp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/openpgp>, <mailto:openpgp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 10 Sep 2018 23:53:10 -0000


> On Sep 10, 2018, at 11:23 AM, Neil Hunsperger <Neil_Hunsperger=40symantec.com@dmarc.ietf.org> wrote:
> 
> I'll add a data point. Some years back, the PGP Desktop product added an unsigned "Charset" header to its ASCII armor. The result looked like this:

And for what it’s worth, section 6.2 of RFC 4880 says:

     - "Charset", a description of the character set that the plaintext
       is in.  Please note that OpenPGP defines text to be in UTF-8.  An
       implementation will get best results by translating into and out
       of UTF-8.  However, there are many instances where this is easier
       said than done.  Also, there are communities of users who have no
       need for UTF-8 because they are all happy with a character set
       like ISO Latin-5 or a Japanese character set.  In such instances,
       an implementation MAY override the UTF-8 default by using this
       header key.  An implementation MAY implement this key and any
       translations it cares to; an implementation MAY ignore it and
       assume all text is UTF-8.

All those MAYs are there because of the real world considerations. People still use JIS all over the place, for example, and this allows them to mark their text and have it work correctly. (That’s why we put it in both the standard and software. The examples of Latin-5 and JIS were real.) On the other hand, there was a completely reasonable objection that there are not only silly character sets that one could make up (nods to the computer language “Whitespace”), and real-world issues of what happens when the diehard Latin-5 people start sending messages to the diehard JIS people, and the resulting N^2 testing matrix.

Thus, this section lets an implementation throw its hands up in the air and scream wherever and whenever it wants, while giving a decent way to clearsign Japanese text.

	Jon

v2.23.0 | Report a Bug | By Email