IETF Logo Mail Archive

Re: [openpgp] Fingerprints and their collisions resistance

Andrey Jivsov <openpgp@brainhub.org> Sun, 06 January 2013 06:28 UTC

Return-Path: <openpgp@brainhub.org>
X-Original-To: openpgp@ietfa.amsl.com
Delivered-To: openpgp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id DF94B21F880B for <openpgp@ietfa.amsl.com>; Sat, 5 Jan 2013 22:28:51 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.437
X-Spam-Level:
X-Spam-Status: No, score=-0.437 tagged_above=-999 required=5 tests=[AWL=-0.000, BAYES_00=-2.599, FH_RELAY_NODNS=1.451, HELO_MISMATCH_NET=0.611, RDNS_NONE=0.1]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 7C1Fv+U8HEDA for <openpgp@ietfa.amsl.com>; Sat, 5 Jan 2013 22:28:51 -0800 (PST)
Received: from qmta05.emeryville.ca.mail.comcast.net (qmta05.emeryville.ca.mail.comcast.net [IPv6:2001:558:fe2d:43:76:96:30:48]) by ietfa.amsl.com (Postfix) with ESMTP id 096E421F87E5 for <openpgp@ietf.org>; Sat, 5 Jan 2013 22:28:44 -0800 (PST)
Received: from omta19.emeryville.ca.mail.comcast.net ([76.96.30.76]) by qmta05.emeryville.ca.mail.comcast.net with comcast id kWUk1k0011eYJf8A5WUkpW; Sun, 06 Jan 2013 06:28:44 +0000
Received: from [192.168.1.8] ([69.181.162.123]) by omta19.emeryville.ca.mail.comcast.net with comcast id kWUj1k00D2g33ZR01WUjZ5; Sun, 06 Jan 2013 06:28:44 +0000
Message-ID: <50E9199B.1090509@brainhub.org>
Date: Sat, 05 Jan 2013 22:28:43 -0800
From: Andrey Jivsov <openpgp@brainhub.org>
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:13.0) Gecko/20120605 Thunderbird/13.0
MIME-Version: 1.0
To: openpgp@ietf.org
References: <50E530D6.6020609@brainhub.org> <50E5494E.6090905@iang.org> <50E60748.3040103@brainhub.org> <50E60F7A.8000001@fifthhorseman.net> <50E61BF7.4020905@brainhub.org> <50E88141.1030907@iang.org> <87vcbb9qpu.fsf@vigenere.g10code.de> <50E8B59C.4010807@fifthhorseman.net> <A2C78934-AD29-47AF-84D8-A48B0A081D50@callas.org>
In-Reply-To: <A2C78934-AD29-47AF-84D8-A48B0A081D50@callas.org>
Content-Type: text/plain; charset="ISO-8859-1"; format="flowed"
Content-Transfer-Encoding: 7bit
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=comcast.net; s=q20121106; t=1357453724; bh=lHA1Dk8fCvbjEuJDOKKR5s9xBf/zhDHIZ1YnzVAp7A4=; h=Received:Received:Message-ID:Date:From:MIME-Version:To:Subject: Content-Type; b=s42gdQ4uO2ihhFbrduoyquJoK8DxT7E4fM1I0DF9GiNhm5PF1NT+HPJCx+1KE46bE 9nrptI88sDfSsWh4BQE9b+7m6XhEAbyt3KaqcUzxGaY6ffn/eZfCHg795xQsH6bm1V RsIL6/LLVKSW1m2Ib3i1TFVFvt/Z08iRuzPT108DMAjl8XR1aZX3uPaI3uUGTAid6f o9UPJMIkKI3qVoZ5f0Squ7Hp/roDeoIaATEvuMtSlAf6dSYD5pCXCGIC2qFP8t/Epr SO3/OzhNSUQHSQ70NyOh4mqqqBxwKBAO+MyrzAIp+gbcF1h90V691bf9q2z+x6Om9N UQpoCX3YiWNRw==
Subject: Re: [openpgp] Fingerprints and their collisions resistance
X-BeenThere: openpgp@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: "Ongoing discussion of OpenPGP issues." <openpgp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/openpgp>, <mailto:openpgp-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/openpgp>
List-Post: <mailto:openpgp@ietf.org>
List-Help: <mailto:openpgp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/openpgp>, <mailto:openpgp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 06 Jan 2013 06:28:52 -0000

On 01/05/2013 07:19 PM, Jon Callas wrote:
>
> On Jan 5, 2013, at 3:22 PM, Daniel Kahn Gillmor wrote:
>
>> iirc, there was a rough consensus within this working group that this
>> was probably a mistake in RFC 4880, and any future revision of the draft
>> should place the full key material into the revocation key subpacket
>> instead of the key's fingerprint.
>
> I was about to comment that if we move on shifting to ECC keys as per Andrey's work on them, we could just about eliminate fingerprints and just use the keys.
>
> Also, the point compression patent expired last year.
>
> 	Jon

BTW, here is my current contribution to the process of making OpenPGP 
data structures most compact: 
http://tools.ietf.org/html/draft-jivsov-ecc-compact-00 . It's a generic 
format that can be used anywhere: X.509, DNS, etc. Realistically, I hope 
that designers of new protocols at IETF will consider this (more 
superior to SEC1 :-)) proposal...

Back to OpenPGP, there is certainly a need to have most compact keys and 
messages, and this is one of the advantages of the ECC keys. It's 
remarkable that one can have a 32 byte public key of AES-128 strength 
and my proposal lays the groundwork to make this happen in OpenPGP (v.s. 
the current 65 bytes).

Given that OpenPGP messages are very compact by design, everything fits 
nicely together.

v2.23.0 | Report a Bug | By Email