Re: Primary subkey subpacket

Werner Koch <wk@gnupg.org> Wed, 14 August 2002 07:20 UTC

Received: from above.proper.com (mail.proper.com [208.184.76.45]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id DAA29136 for <openpgp-archive@odin.ietf.org>; Wed, 14 Aug 2002 03:20:15 -0400 (EDT)
Received: by above.proper.com (8.11.6/8.11.3) id g7E7CCC07125 for ietf-openpgp-bks; Wed, 14 Aug 2002 00:12:12 -0700 (PDT)
Received: from porta.u64.de (porta.u64.de [194.77.88.106]) by above.proper.com (8.11.6/8.11.3) with ESMTP id g7E7C9w07111 for <ietf-openpgp@imc.org>; Wed, 14 Aug 2002 00:12:09 -0700 (PDT)
Received: from uucp by kasiski.gnupg.de with local-rmail (Exim 3.32 #1 (Debian)) id 17etTd-0000so-00; Wed, 14 Aug 2002 10:26:01 +0200
Received: from wk by alberti.gnupg.de with local (Exim 3.35 #1 (Debian)) id 17esMq-0002rr-00; Wed, 14 Aug 2002 09:14:56 +0200
To: ietf-openpgp@imc.org
Subject: Re: Primary subkey subpacket
References: <20020813215844.GA20328@daredevil.joesixpack.net>
From: Werner Koch <wk@gnupg.org>
X-PGP-KeyID: 621CC013
X-Request-PGP: finger://wk@g10code.com
X-FSFE-Motto: Omnis enim res, quae dando non deficit, dum habetur et non datur, nondum habetur, quomodo habenda est.
X-FSFE-Info: http://fsfeurope.org
Organisation: g10 Code GmbH
Date: Wed, 14 Aug 2002 09:14:56 +0200
In-Reply-To: <20020813215844.GA20328@daredevil.joesixpack.net> (Timo Schulz's message of "Tue, 13 Aug 2002 23:58:44 +0200")
Message-ID: <877kithpxr.fsf@alberti.gnupg.de>
Lines: 19
User-Agent: Gnus/5.090008 (Oort Gnus v0.08) Emacs/20.7 (i386-debian-linux-gnu)
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Sender: owner-ietf-openpgp@mail.imc.org
Precedence: bulk
List-Archive: <http://www.imc.org/ietf-openpgp/mail-archive/>
List-Unsubscribe: <mailto:ietf-openpgp-request@imc.org?body=unsubscribe>
List-ID: <ietf-openpgp.imc.org>

On Tue, 13 Aug 2002 23:58:44 +0200, Timo Schulz said:

> Recently I stumbled over a problems with multiple subkeys. I know
> PGP doesn't let the user choose the key at all and GPG uses the
> newest key by default. What about a "primary subkey" subpacket

I don't think this is needed.  If a subkey is published a sending
implementation may choose any of the valid subkeys for encryption.
Although not specified in OpenPGP, it should select the newest one as
long as it has no creation date in the future.

Having such a default subkey flag would inhibit automatic key
rollover.  If we really want to specify handling of subkeys we should
first discuss Ian Brown's suggestions for PFS.


Shalom-Salam,

   Werner