IETF Logo Mail Archive

Re: [openpgp] Fingerprints

David Shaw <dshaw@jabberwocky.com> Wed, 15 April 2015 20:21 UTC

Return-Path: <dshaw@jabberwocky.com>
X-Original-To: openpgp@ietfa.amsl.com
Delivered-To: openpgp@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 84B7F1A874E for <openpgp@ietfa.amsl.com>; Wed, 15 Apr 2015 13:21:20 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.911
X-Spam-Level:
X-Spam-Status: No, score=-1.911 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_PASS=-0.001, T_RP_MATCHES_RCVD=-0.01] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Ltzg49dVJq2i for <openpgp@ietfa.amsl.com>; Wed, 15 Apr 2015 13:21:19 -0700 (PDT)
Received: from mail.jabberwocky.com (walrus.jabberwocky.com [173.9.29.57]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id ECFE91A8726 for <openpgp@ietf.org>; Wed, 15 Apr 2015 13:21:18 -0700 (PDT)
Received: from dshaw.nasuni.net (50-202-126-134-static.hfc.comcastbusiness.net [50.202.126.134]) (authenticated bits=0) by mail.jabberwocky.com (8.14.4/8.14.4) with ESMTP id t3FJra1s027383 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO) for <openpgp@ietf.org>; Wed, 15 Apr 2015 15:53:36 -0400
Content-Type: text/plain; charset="us-ascii"
Mime-Version: 1.0 (Mac OS X Mail 8.2 \(2098\))
From: David Shaw <dshaw@jabberwocky.com>
In-Reply-To: <1429128262.1702.41.camel@scientia.net>
Date: Wed, 15 Apr 2015 16:21:22 -0400
Content-Transfer-Encoding: quoted-printable
Message-Id: <E07D3736-038C-4C97-B96B-77284A5A9B02@jabberwocky.com>
References: <CAMm+LwhbB+-MnGRBCvprgAGOuu+5CJ2rgod7EBGOQR5UNVrspQ@mail.gmail.com> <87y4m0ozlt.fsf@vigenere.g10code.de> <20150415135105.GJ3106@singpolyma-liberty> <FE2717DC-3950-4536-B83D-BD005D2F26A6@callas.org> <1429128262.1702.41.camel@scientia.net>
To: "openpgp@ietf.org" <openpgp@ietf.org>
X-Mailer: Apple Mail (2.2098)
Archived-At: <http://mailarchive.ietf.org/arch/msg/openpgp/M6RXlhwWbIsmWpUvDfvkqQyvvtM>
Subject: Re: [openpgp] Fingerprints
X-BeenThere: openpgp@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "Ongoing discussion of OpenPGP issues." <openpgp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/openpgp>, <mailto:openpgp-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/openpgp/>
List-Post: <mailto:openpgp@ietf.org>
List-Help: <mailto:openpgp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/openpgp>, <mailto:openpgp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 15 Apr 2015 20:21:20 -0000

On Apr 15, 2015, at 4:04 PM, Christoph Anton Mitterer <calestyo@scientia.net> wrote:
> 
> On Wed, 2015-04-15 at 12:11 -0700, Jon Callas wrote:
>> There was a proposal that floated around that defined an extended
>> fingerprint to be an algorithm number followed by the actual bits.
>> For example, ASCII-fied 23:ABCDEF0123...FF. There's an obvious binary
>> representation. There's an obvious way to truncate that as well --
>> just decide if you truncate little-endian or big. (Personally, despite
>> being a little-endian bigot, this is a place where network byte order
>> is even to me the obvious win.)
>> The major advantage of this is that you can define it and then you
>> never have to change it again. We don't have to have any arguments
>> over what hash function is proper to use, etc. An implementation can
>> decide to support or not support whatever.
> +1
> 
> But shouldn't one define better the number to be either a string?
> Sure a one byte number with 255 possible future algorithms seem plenty
> enough, but people also once thought that about 32bit IPv4 addresses,
> two digit year numbers and so on.

Using a string is fine, but even with numbers, there is no rule that the number has to be a single byte.  After enough years and algorithms added, it could be "100000:ABCDEF0123..."

Whether it's a string or number, there has to be a list for what number/string means what algorithm.  Once you have a list, it doesn't really matter if it's a string or a number.

David

v2.23.0 | Report a Bug | By Email