IETF Logo Mail Archive

Re: [openpgp] Fingerprint requirements for OpenPGP

Jon Callas <jon@callas.org> Tue, 12 April 2016 22:26 UTC

Return-Path: <jon@callas.org>
X-Original-To: openpgp@ietfa.amsl.com
Delivered-To: openpgp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 3549812D7B1 for <openpgp@ietfa.amsl.com>; Tue, 12 Apr 2016 15:26:55 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.902
X-Spam-Level:
X-Spam-Status: No, score=-1.902 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id a9uGmWR5Q8uv for <openpgp@ietfa.amsl.com>; Tue, 12 Apr 2016 15:26:54 -0700 (PDT)
Received: from mail.merrymeet.com (merrymeet.com [173.164.244.100]) by ietfa.amsl.com (Postfix) with ESMTP id 092B812D0CC for <openpgp@ietf.org>; Tue, 12 Apr 2016 15:26:53 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by mail.merrymeet.com (Postfix) with ESMTP id A04DF94BF939; Tue, 12 Apr 2016 15:26:53 -0700 (PDT)
X-Virus-Scanned: amavisd-new at merrymeet.com
Received: from mail.merrymeet.com ([127.0.0.1]) by localhost (merrymeet.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id FWR31MHNGrOX; Tue, 12 Apr 2016 15:26:44 -0700 (PDT)
Received: from keys.merrymeet.com (keys.merrymeet.com [173.164.244.97]) by mail.merrymeet.com (Postfix) with ESMTPSA id 97C4494BF922; Tue, 12 Apr 2016 15:26:42 -0700 (PDT)
Received: from [10.119.8.236] ([209.73.142.2]) by keys.merrymeet.com (PGP Universal service); Tue, 12 Apr 2016 15:26:44 -0700
X-PGP-Universal: processed; by keys.merrymeet.com on Tue, 12 Apr 2016 15:26:44 -0700
Mime-Version: 1.0 (Mac OS X Mail 9.3 \(3124\))
From: Jon Callas <jon@callas.org>
In-Reply-To: <87vb3nslqh.fsf@alice.fifthhorseman.net>
Date: Tue, 12 Apr 2016 15:26:42 -0700
Message-Id: <C3D3EC72-6C28-48FC-93C3-6EF7803866A7@callas.org>
References: <87vb3nslqh.fsf@alice.fifthhorseman.net>
To: Daniel Kahn Gillmor <dkg@fifthhorseman.net>
X-Mailer: Apple Mail (2.3124)
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
Archived-At: <http://mailarchive.ietf.org/arch/msg/openpgp/IjABGAbvuCuaktLF0dn2VzE76sI>
Cc: IETF OpenPGP <openpgp@ietf.org>, Jon Callas <jon@callas.org>
Subject: Re: [openpgp] Fingerprint requirements for OpenPGP
X-BeenThere: openpgp@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: "Ongoing discussion of OpenPGP issues." <openpgp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/openpgp>, <mailto:openpgp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/openpgp/>
List-Post: <mailto:openpgp@ietf.org>
List-Help: <mailto:openpgp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/openpgp>, <mailto:openpgp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 12 Apr 2016 22:26:55 -0000

> On Apr 11, 2016, at 5:40 PM, Daniel Kahn Gillmor <dkg@fifthhorseman.net> wrote:
> 
> Is this problem framed correctly?
> 
> If not, what's missing?

Actually, I don't think it's framed correctly.

I don't think distinguishing between local and remote databases is necessary; I know I'm picking a nit here, but the design of many systems is such that there isn't a difference. But moreover, a real remote database is as likely to need to answer the question, "give me the key(s) for <identifier>" where the identifier might be a fingerprint and might be something like an email address.

Like I wrote before, there are two major uses for a "fingerprint," a handle and an auth string. 

Moreover the auth-string use case of fingerprints is actually the auth string of the crypto key that is the top-level signing key of the "PGP key", which is a data structure that usually consists of at least two crypto keys.

But the handle that turns into a key id is presently derived from the fingerprint of a subkey that's used for encryption.

I think it's completely reasonable to update the standard to take the old-style fingerprint into better hash functions than SHA-1. It's imperfect but it's the devil we know.

If you want to move into devils we don't know, then why *not* make an auth-string that is a different thing than handle?

As you're describing the use cases, you've described something that you can't solve. There's nothing wrong with noting that both circles and squares have desirable properties, but you're not going to get space-filling circles or a square that's got the perimeter equidistant from the center. 

	Jon

v2.23.0 | Report a Bug | By Email