Re: [openpgp] OpenPGPv5 wish list

Jean-Jacques <jeanjacquesbrucker@gmail.com> Mon, 29 April 2013 09:15 UTC

Return-Path: <jeanjacquesbrucker@gmail.com>
X-Original-To: openpgp@ietfa.amsl.com
Delivered-To: openpgp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B1FBF21F9D4A for <openpgp@ietfa.amsl.com>; Mon, 29 Apr 2013 02:15:58 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.599
X-Spam-Level:
X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id yzbWn3-bfylT for <openpgp@ietfa.amsl.com>; Mon, 29 Apr 2013 02:15:58 -0700 (PDT)
Received: from mail-ea0-x230.google.com (mail-ea0-x230.google.com [IPv6:2a00:1450:4013:c01::230]) by ietfa.amsl.com (Postfix) with ESMTP id BD5A821F9CE6 for <openpgp@ietf.org>; Mon, 29 Apr 2013 02:15:54 -0700 (PDT)
Received: by mail-ea0-f176.google.com with SMTP id h14so2527158eak.35 for <openpgp@ietf.org>; Mon, 29 Apr 2013 02:15:53 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=x-received:date:from:to:subject:message-id:in-reply-to:references :x-mailer:mime-version:content-type; bh=uxwT7g6Nrtd6zcN1kWzOsybKdxgkvWobcbm9+k2uhOA=; b=oXj27C//PZ8GI6I+rqv9hZ36tQk0lUbxH5oYSPgysgrl/Yny91tWgf4nQT3N0cwGYp xNyPWi++NKGpeHui9CYOMiqAboWujrhbtFHIHd7k54tBQTQLvtQ1RJiHvI6I8nABod98 eTJ9r1HMU+xuthXnxjG+SUud/FYHBHuFa+up1fVqvNLd16tvxOzr6eQZe/7b/k1wiIV0 CiVIsCx6VHWdAm8+Bml0uSVkgAje20GinezwnQPbo0henYUFXVdB7Dl/x7Wh8pX05WAm HCYHnL/RuGjN9CJc2gUAMTpASN3XvRVDYO4jGTyVJu7vt1T2G60QPEFJuXbnWgWmCxdQ FMjg==
X-Received: by 10.15.95.74 with SMTP id bc50mr95740442eeb.36.1367226953053; Mon, 29 Apr 2013 02:15:53 -0700 (PDT)
Received: from localhost.localdomain (mar92-18-78-239-130-37.fbx.proxad.net. [78.239.130.37]) by mx.google.com with ESMTPSA id e50sm14962694eev.13.2013.04.29.02.15.52 for <multiple recipients> (version=SSLv3 cipher=RC4-SHA bits=128/128); Mon, 29 Apr 2013 02:15:52 -0700 (PDT)
Date: Mon, 29 Apr 2013 11:15:32 +0200
From: Jean-Jacques <jeanjacquesbrucker@gmail.com>
To: openpgp@ietf.org
Message-ID: <20130429111532.7e53c7f6@gmail.com>
In-Reply-To: <517E0250.1040708@sixdemonbag.org>
References: <20121212104620.GA35659@redoubt.spodhuis.org> <50D0AB16.5020505@brainhub.org> <CAN+za=O4NcLtN=Etm-7UC4SY=ndan_0n167rkDfKqcpEp0W25g@mail.gmail.com> <2584059.Q9cNNqxsta@inno> <517E0250.1040708@sixdemonbag.org>
X-Mailer: Claws Mail 3.8.1 (GTK+ 2.24.10; x86_64-mageia-linux-gnu)
Mime-Version: 1.0
Content-Type: multipart/signed; micalg=PGP-SHA1; boundary="Sig_/7=guc+j1815X+yMkqOgdX=q"; protocol="application/pgp-signature"
Subject: Re: [openpgp] OpenPGPv5 wish list
X-BeenThere: openpgp@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: "Ongoing discussion of OpenPGP issues." <openpgp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/openpgp>, <mailto:openpgp-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/openpgp>
List-Post: <mailto:openpgp@ietf.org>
List-Help: <mailto:openpgp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/openpgp>, <mailto:openpgp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 29 Apr 2013 09:15:58 -0000

Le Mon, 29 Apr 2013 01:17:04 -0400,
"Robert J. Hansen" <rjh@sixdemonbag.org>; a écrit :

> On 4/28/2013 10:37 PM, Hauke Laging wrote:
> > Other things we IMHO really need notation standards for:
> 
> This really isn't the place for it, guys.  GnuPG-devel is for
> discussion of how to make GnuPG track the standard better; the
> OpenPGP list is for discussion of how to make the standard itself
> better.

Yep, so I switched the thread to the other mailing list.
> 
> > Things I want in the protocol:
> 
> I'll make my own wish list simple:
> 
> I don't want *anything* new included in the standard unless there
> exists at least one user who says, "the absence of this feature is a
> showstopper for me and is blocking my adoption of GnuPG."  This user
> needs to be able to show a real-world use case and be willing to
> volunteer to run trials in a real-world environment.
> 
> No real-world user?  No feature.

So I answered because I really "need" such feature in OpenPGP for
real-world :

2) What is the key used for?

And I see at least 4 purposes :
 - To authenticate itself through TLS  [RFC6091]
 - Maybe To sign other certificates (subkeys on smartcard issues)
 - To authenticate through HTTP (gpgauth or
   https://github.com/Open-UDC/open-udc/blob/master/docs/HTTP_OpenPGP_Authentication.draft.txt)
 - To sign an OpenUDC transaction.

I work especially on the 2 last purposes. And having the possibility
for the owner to set descriptions, or more flags on its (sub)keys inside
its OpenPGP certificate, would be a more elegant solution than some
workaround we have to manage.

> 
> That's my own wish list, and I desperately hope it comes to pass.  :)
> 
We have to better organize A wish list, or it will be a mess to
identify their elements. :-)

---
jbar.