IETF Logo Mail Archive

Re: [openpgp] Clarifiction on v5 signatures

Wiktor Kwapisiewicz <wiktor@metacode.biz> Sun, 11 November 2018 21:08 UTC

Return-Path: <wiktor@metacode.biz>
X-Original-To: openpgp@ietfa.amsl.com
Delivered-To: openpgp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 6F25D130DD0 for <openpgp@ietfa.amsl.com>; Sun, 11 Nov 2018 13:08:24 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.001
X-Spam-Level:
X-Spam-Status: No, score=-2.001 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=metacode.biz
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id dh60e1oKz_II for <openpgp@ietfa.amsl.com>; Sun, 11 Nov 2018 13:08:22 -0800 (PST)
Received: from mail-lj1-x231.google.com (mail-lj1-x231.google.com [IPv6:2a00:1450:4864:20::231]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D67D81286D9 for <openpgp@ietf.org>; Sun, 11 Nov 2018 13:08:21 -0800 (PST)
Received: by mail-lj1-x231.google.com with SMTP id s5-v6so5817893ljd.12 for <openpgp@ietf.org>; Sun, 11 Nov 2018 13:08:21 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=metacode.biz; s=2017; h=subject:to:references:cc:from:openpgp:autocrypt:organization :message-id:date:mime-version:in-reply-to:content-language :content-transfer-encoding; bh=phVX5fa+1ED/c4XvngWEwcBtcWm7lwkW7NHLcaAJG2g=; b=A+LmgRnk4iY0G8WrK+yaen3OGNW1rcx09ZosLz6QND8rC4X0oVg4NQjH7155qS/JH5 cepOd36bFhcPSNtwH1myQNMvV2CYMegv4+r5Al7IVkXaHvXKgNRT4yJ0cw3SidVoXlzZ Cy7VThYOZuEwnyGZ4sZ3jj6DKcD16AIbmsnXrpa9DGUOdXZlcn8yZSt/OIbrgmebLtWt rTpVmqRMyRKWDg9xgRbgDEOQeIBpuR/FGK5fBvit2mgGOmWkMzLICqEaJDJ8vtEj7C/E hWX+b7FApg+adNviPbvOfrpz+JoCM5XkYLaq6tOmc4PqnQJ5btSSUJdbSayJVzwlkouf LTpg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:subject:to:references:cc:from:openpgp:autocrypt :organization:message-id:date:mime-version:in-reply-to :content-language:content-transfer-encoding; bh=phVX5fa+1ED/c4XvngWEwcBtcWm7lwkW7NHLcaAJG2g=; b=oB791uWt1soyadTEPORreq5QDN10vnBOrcqhc0OETPEQWYaP3b5aTdczzJAHNX+GMd CQLePIXQbKm/F3faqawnH09HPjFSiLoW/bm2aEXdzADWhw4P0M4Qz+txoJ4wnQatnPJI 9KiZSzb/G/4jKefiOXVPTw7vjHuFSwDm3J5lxM0DWHzS94j951vyNKbOjGzvPnG7OfgC VoaqbUfApPIqf833XnxmFTIZl+qfja4Jgcs0fDFbAT2avED/zkTjKFkf2beoQSeW/sKU 14Utw/xyrB/8Gg9mLFcqvGEZvoi+cOMCzmUAyCY1QA5Pw9qCDnoRnWJJyrjMrxnvKirJ nPcw==
X-Gm-Message-State: AGRZ1gIGOsMSlIb88wkFzxMMMubyUTYzGYjT6cp0x4EBUADc/pJNAdYi f0b/I42AVzQjGGy2vCbvPn0v1Euud8g=
X-Google-Smtp-Source: AJdET5fdAyR5MKg7vMtpux/RBvgsf5N3dyS4vm05LXfbU+Y9nvBWBIBQ7mjyIpmJwOlDuo3FRXJVqw==
X-Received: by 2002:a2e:9819:: with SMTP id a25-v6mr11432880ljj.6.1541970499263; Sun, 11 Nov 2018 13:08:19 -0800 (PST)
Received: from ?IPv6:2a00:f41:382b:93aa:7cc1:dead:5dc0:6d6e? ([2a00:f41:382b:93aa:7cc1:dead:5dc0:6d6e]) by smtp.googlemail.com with ESMTPSA id r27-v6sm2801690lja.65.2018.11.11.13.08.17 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Sun, 11 Nov 2018 13:08:18 -0800 (PST)
To: Heiko Stamer <HeikoStamer@gmx.net>
References: <877ei9szyc.fsf@wheatstone.g10code.de> <dda2d47e-b06e-cd6c-9bab-d8f30149c2ad@gmx.net> <87mur2nyt6.fsf@wheatstone.g10code.de> <f2770475-3b73-3849-33cf-91aaf52c1999@metacode.biz> <87tvlam1iz.fsf@wheatstone.g10code.de> <d9ece307-8153-24ce-2de4-07792e3c1ffb@metacode.biz> <87lg6lm2w8.fsf@wheatstone.g10code.de> <486d2345-69c1-c329-d887-f164b5dc90d4@metacode.biz> <5b72cd41-2941-54a3-92fc-3bc6a633798b@gmx.net>
Cc: openpgp@ietf.org
From: Wiktor Kwapisiewicz <wiktor@metacode.biz>
Openpgp: preference=signencrypt
Autocrypt: addr=wiktor@metacode.biz; keydata= xsFNBFhoYHoBEADzmg9UuwDrtvyejU01gDY1J1iJiCi4XGJ4lCfYeLC2jSagIxU/5Lu0lRft 0Loi2tsjpo0c8docP7HFxafEEvnnt/iabd6I536llMuw0uno4PgnD3ljcCMZLT+vn+amIDta lzVoMnSqzoNUotMNMtjIFuAaQ/wr4/Mp9CIgJdviGUc3PscqUiiUVVtk6uF0x657NULZgSIT /Mrqlr2i4RuyPwXe2Qt0uEA3KWWjF0l2NpAMVrqz+nHsLoNOaAsfdx94bzKQrrSeSQqEO2f+ /eO/hbUAFAmEhrotmUO8wJNygo8TgkdlzFI+UE4p8/KW0aCgGGgR8YkCvHq2OQhAAYFNJoNz Hqw0FGxdsY8qWFkYpoSB8zKspNy8KliofCamMYXoPF7eVIxIiKvxrAykGP4jNnzSoV0cn+bY fXnox1IhnqbnoJIT7kTmXv4JmWoYm8ThHqpEgcQOUUQzSRXb9OiNwiXT71ijeO1qswMRpsgk 6AGKSZGWxa3c4ive/p8z1Ax27BFZSh2FceIcMCcGLrDjnQYgeFsAJ1jSxZQXkGuJFHfb4nff Big7aq/vyKrQFQXG0NQQL7rZAdk/s665vifos0yPmRDu7yDT1ggdyBp4Pa4re+ZJcNRNzNHo zU9al+CoImCQjnTtKMXmOe/BzGrpHI4QR3NNzVa423WCIWkHfwARAQABzSlXaWt0b3IgS3dh cGlzaWV3aWN6IDx3aWt0b3JAbWV0YWNvZGUuYml6PsLB7gQTAQoAmAIbAQgLCQgHDQwLCgUV CgkICwIeAQIXgHMUgAAAAAAqAEB0aW1lc3RhbXArYml0Y29pbi10cmFuc2FjdGlvbkBtZXRh Y29kZS5iaXphZmNiMDkyYzVjYTY0MDk1MjZkMThhZTljZjIyZDNiNTVkMzdlNzIzZWIxYjc0 ZTNmODRmN2U2YjA1MmExNjJhBQJaLoPdBQkDwPuGAAoJEGyIV+DY6PB0CNkQAKGTFHzG4YO6 yne5jfMlGcF8JUYq0EGHE9DRK6oAyGo+1TGFbf1bS4wULvA6LFBOLd+aI7uuN062kDdtHVUf 0S0AZ9ByjIBdQJsqx47W6uXsRX/pB0a70QqS6NbS3AL/fdwZOj/TBk8bdsfg7Z+hH+ykMcOs EYLmdMLmrqYgl9EyP4FmsnU9H8x4yKp0/Kv4BQYfjn68CFvyM2NQU3MR/H3sqvM/uY5AJwTp A8X1ZbN8pjZO5YRTiQtMrXekNzhP3p0ep1+cu2UxQO6jXV6Sjdm8D8RJzGaxCuhN/VhLNSvh cb2T5sejBAhU8JmKNle4+z5wZWB4bl5Dfkg1NpSEEdv7so+KXCnszo89UJJijlfgBFtm5WjK u7gCR8CVOeGQwQolEzi18zihCwRy1rg/xKokk7q6ZBEvxM1sBYNd81mi1PgrNwgH4jPULfQk UJtU7HLRVNLbnrIyEQbLOJegBLaWHgR4T69blBGg1oqiq/1PHnZuJauZhhNEAViX42VKJP1z w6PIfvbjg27wf4OjEDtVVXCrxqqljHRilagFQHGlU+iF6Ii2C3pNod11+lqJC0riFylxK/wu zHpoZdFg10gqMWIE2Exm7nJ6ToKv5kZqKC97mWrmh6FFEr6HmjDDuo+N4RER3VGj0dSey5nc eFQ2vry17IGN1ljV9TiARDgizsBNBFs/lS0BCAC5oX3r3luF7czMF8UFxJz55XuvNRs4tEjo Hzqcqoe4+RJyfNDtspgevYIq1WTKw/H3ZYsd2wZpkM3I+BJn9eeHZKs77qXQZGN5PBB65rZo LjMx+qHa6wH4lIYMYW7eB9HHMsT/5E3ILBSRzZIwJimd/QdIMKSrJ5mPMkAd+9+xob5zKHO5 L5pbQtJSGS0m17/hA0kCTLI885hLtT3JsI/KWwuAYDrTwsayzh/hG/NgdA3I8xlrQCLC0EFJ oxHkN9tCyXeKPlrIPYyMB1jHTo1iNV0CQGpk+zf6DA/ySGfJxd30ksJZ8y5qxD43zS0YffYM C01CeuqPoGZ2Fy9VxhODABEBAAHCwXwEGAEKACYWIQRlOQmi8ON8EG9fr1RsiFfg2OjwdAUC Wz+VLQIbDAUJAeEzgAAKCRBsiFfg2OjwdKQ4D/wIb8s2Tw8MhbbwASutzTwg3g3KReDRHgSz z7RJtePIM8HC6qm9++9sxoqww7qm35vb604HtMRORYmfXgVSocsYg/eAk8LoBVfCZidDVBia /i/dYx/8LHeX/0PqPluSusQh64BFUoVetUCP+kISbK8vgDt4HfDSgtenC5lpTAdk257A84p2 zDnUtVr8XNv09m7ASft6Wh5Wrn+aWlJrf6T6eysk9OIw8VpSuq0oG3vcEoTbHKJN8TDliPUc QVz5Qti0tgB40PLrqOpTdENdxbiaUNFpHm3Tkk+n7CEFcOayFvy5vU6Nih0hu+LFC2XHzQRw sLnuQ2EilWtXRulcwvFo6A3Vp+gidxc6UwC+LBFJjvDMv5hmsdhSm08r2hd2k61oL6NCGVB3 fxuJT85UHsEC04N72Fa26+Spkh3DtJMrKqJlBBas7oJYh6644DB4rccd6VT3n7Zv1pd2uIWv gjORztfBzRJEysOeHoNpr4hEocg62beu9cnGHpYB9j3mhv+E2IYPnJKqit18G7xb7QnyQU7L YfctLO0GLNdTBavWJggHPzUp09vb3uGS3dMdAYbWTBtnXttkdYuLx/oCe1LVUQYotsX7s83V kVc2n6xzrcaebmgoFtGUfUmOV0U0xbqv6Mxg27qctYh1QidvRyt0xqGA0Qhz/vvoQdfQeMlO Tg==
Organization: Metacode
Message-ID: <dc90e94b-3745-afcb-14cc-8c3a9569fc23@metacode.biz>
Date: Sun, 11 Nov 2018 22:08:15 +0100
MIME-Version: 1.0
In-Reply-To: <5b72cd41-2941-54a3-92fc-3bc6a633798b@gmx.net>
Content-Type: text/plain; charset="utf-8"
Content-Language: en-US
Content-Transfer-Encoding: 7bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/openpgp/aLbG-cNwnaXbGkLGG0_mcUEy534>
Subject: Re: [openpgp] Clarifiction on v5 signatures
X-BeenThere: openpgp@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Ongoing discussion of OpenPGP issues." <openpgp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/openpgp>, <mailto:openpgp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/openpgp/>
List-Post: <mailto:openpgp@ietf.org>
List-Help: <mailto:openpgp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/openpgp>, <mailto:openpgp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Sun, 11 Nov 2018 21:08:25 -0000

Hi Heiko,

>> Split key (0x10) looks like a good way to implement separation of duties
>> (where multiple people are needed to use the key). I don't think this is
>> possible in OpenPGP now.
> 
> This was one reason to create DKGPG: https://www.nongnu.org/dkgpg/
> 
> Currently, there are some efforts at NIST on threshold cryptography:
> https://csrc.nist.gov/projects/threshold-cryptography

That's intriguing, thanks for bringing this up, I'll definitely check this out
as this is something I've been thinking of for quite some time.

Kind regards,
Wiktor

-- 
https://metacode.biz/@wiktor

v2.23.0 | Report a Bug | By Email