Re: [openpgp] Issuer Fingerprint
Joseph Lorenzo Hall <joe@cdt.org> Tue, 14 June 2016 12:25 UTC
Return-Path: <jhall@cdt.org>
X-Original-To: openpgp@ietfa.amsl.com
Delivered-To: openpgp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2141912DBC0 for <openpgp@ietfa.amsl.com>; Tue, 14 Jun 2016 05:25:19 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.699
X-Spam-Level:
X-Spam-Status: No, score=-2.699 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=cdt.org
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id dTzHSE-baY-E for <openpgp@ietfa.amsl.com>; Tue, 14 Jun 2016 05:25:17 -0700 (PDT)
Received: from mail-vk0-x229.google.com (mail-vk0-x229.google.com [IPv6:2607:f8b0:400c:c05::229]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 0655212DBBC for <openpgp@ietf.org>; Tue, 14 Jun 2016 05:25:16 -0700 (PDT)
Received: by mail-vk0-x229.google.com with SMTP id u64so107240585vkf.3 for <openpgp@ietf.org>; Tue, 14 Jun 2016 05:25:16 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cdt.org; s=google; h=mime-version:in-reply-to:references:date:message-id:subject:from:to; bh=SuMsxQ+4XzdsSM8BlMstbWK8SNWJzkSXy2i9DiKhPZ8=; b=FhfVNT6/Cur6L8otbAzWn704Vzf6A7OeqVyftD3iS04IU2NcKxn3mWY3r2QMoZsvKa DnXH0YqLz/3mpUPcAlwiFQLBfS100oqN0rXv75mOxiCjMd7DA2mdh1MNpJjq89jlXejE wnahsYW5oB78mLo4DRRhYAeJgUTnzxrtuqTgU=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:date :message-id:subject:from:to; bh=SuMsxQ+4XzdsSM8BlMstbWK8SNWJzkSXy2i9DiKhPZ8=; b=h9XssVs8Q4CW4oedE2u4ESsHA3qVdjUIkqH8nEVf9aiSOLWImz8QfXeptVk78hB6lI aHCRAewFVIEI41bHUkYwBx/GSzi+e0MptgKKcWAtF2uJ59cajDV17HVtUc0KwtWFazcT 1QToo/HP+ky4ocgn2DKgGQsmKM4b6jIo2qvq8rgi1bbo5wrx2BPQUIYgrFID3tINK0rT waSn2iNeF6iNTq/jDluAgfrAbZ6INeaqH7ByowmYwZrXJsHlnliEIO5ELVZ65SP8shmq cEtTILuyuVE/8vnq5qnrK2BF8aAYxlxJjKchX3ovydPMxD5/b6Gz1+ijSbSycednErdh QrvQ==
X-Gm-Message-State: ALyK8tJ1sWItkl2NZo1m9qR1ivHzYcPxwU2MiDpsgQNChgCXnc6MwPImFXwAeBfscEwJJq8EzsVGHtXSCskiXw+j
MIME-Version: 1.0
X-Received: by 10.176.3.72 with SMTP id 66mr8355518uat.146.1465907115914; Tue, 14 Jun 2016 05:25:15 -0700 (PDT)
Received: by 10.103.27.195 with HTTP; Tue, 14 Jun 2016 05:25:15 -0700 (PDT)
In-Reply-To: <87mvmp5rmi.fsf@wheatstone.g10code.de>
References: <87mvmp5rmi.fsf@wheatstone.g10code.de>
Date: Tue, 14 Jun 2016 08:25:15 -0400
Message-ID: <CABtrr-Vrv-S_2htPECqLR+Butqr9GzwvPaXfqEyW2fBRW__o_w@mail.gmail.com>
From: Joseph Lorenzo Hall <joe@cdt.org>
To: "openpgp@ietf.org" <openpgp@ietf.org>
Content-Type: multipart/alternative; boundary="001a113f2694eb1f7105353c1894"
Archived-At: <https://mailarchive.ietf.org/arch/msg/openpgp/HPDnuxIqNgz7zda0XdRCUHtO5U0>
Subject: Re: [openpgp] Issuer Fingerprint
X-BeenThere: openpgp@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: "Ongoing discussion of OpenPGP issues." <openpgp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/openpgp>, <mailto:openpgp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/openpgp/>
List-Post: <mailto:openpgp@ietf.org>
List-Help: <mailto:openpgp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/openpgp>, <mailto:openpgp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 14 Jun 2016 12:25:19 -0000
Sounds like it doesn't make sense to make this optional for signatures as implicit signature identity could result in attacks where the attacker changes an implicit identity and signature verification fails? On Monday, June 13, 2016, Werner Koch <wk@gnupg.org> wrote: > Hi! > > It is a long time problem in OpenPGP that signatures have no way to > unambiguously specify the key used to create the signature. The specs > suggest the use of the Issuer subpacket to convey the long keyid of the > issuing key. However, it is possible to create colliding 64 bit keyids > and thus it is possible that a user downloads the wrong key for a > signature; this will yield a bad signature status and the user has no > easy means to decide whether this is is really a bad signature, or due > to the use of a colliding public key. > > This can easily be solved by including the full fingerprint of the key > in the signature. Introducing such a feature can be made orthogonal to > a new fingerprint format. I propose this change: > > --8<---------------cut here---------------start------------->8--- > @@ -1055,6 +1055,7 @@ #### {5.2.3.1} Signature Subpacket Specification > 30 Features > 31 Signature Target > 32 Embedded Signature > + 33 Issuer Fingerprint > 100 to 110 Private or experimental > > An implementation SHOULD ignore any subpacket of a type that it does > @@ -1615,6 +1616,16 @@ #### {5.2.3.26} Embedded Signature > in Section 5.2 above. It is useful when one signature needs to refer > to, or be incorporated in, another signature. > > +#### Issuer Fingerprint > + > +(1 octet key version number, N octets of fingerprint) > + > +The OpenPGP Key fingerprint of the key issuing the signature. The > +only possible key version number is 4 and thus N must be 20. This > +subpacket is intended to eventually replace the issuer subpacket which > +does not not unambiguously specify the key. It SHOULD be part of all > +signatures. > + > ### {5.2.4} Computing Signatures > > All signatures are formed by producing a hash over the signature data, > --8<---------------cut here---------------end--------------->8--- > > > > Shalom-Salam, > > Werner > > > -- > Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz. > /* EFH in Erkrath: https://alt-hochdahl.de/haus */ > > _______________________________________________ > openpgp mailing list > openpgp@ietf.org <javascript:;> > https://www.ietf.org/mailman/listinfo/openpgp > -- Joseph Lorenzo Hall Chief Technologist, Center for Democracy & Technology [https://www.cdt.org] 1401 K ST NW STE 200, Washington DC 20005-3497 e: joe@cdt.org, p: 202.407.8825, pgp: https://josephhall.org/gpg-key Fingerprint: 3CA2 8D7B 9F6D DBD3 4B10 1607 5F86 6987 40A9 A871
- Re: [openpgp] Issuer Fingerprint Werner Koch
- Re: [openpgp] Issuer Fingerprint Werner Koch
- Re: [openpgp] Issuer Fingerprint Peter Gutmann
- Re: [openpgp] Issuer Fingerprint Werner Koch
- Re: [openpgp] Issuer Fingerprint Werner Koch
- Re: [openpgp] Issuer Fingerprint Daniel Kahn Gillmor
- Re: [openpgp] Issuer Fingerprint Werner Koch
- Re: [openpgp] Issuer Fingerprint Joseph Lorenzo Hall
- Re: [openpgp] Issuer Fingerprint Werner Koch
- Re: [openpgp] Issuer Fingerprint Vincent Breitmoser
- [openpgp] Issuer Fingerprint Werner Koch
- Re: [openpgp] Issuer Fingerprint (issue#3) Werner Koch
- Re: [openpgp] Issuer Fingerprint (issue#3) Werner Koch