IETF Logo Mail Archive

Re: [openpgp] 1PA3PC: first-party attested third-party certifications (making Key Server Prefs no-modify actionable)

Daniel Kahn Gillmor <dkg@fifthhorseman.net> Mon, 02 September 2019 09:00 UTC

Return-Path: <dkg@fifthhorseman.net>
X-Original-To: openpgp@ietfa.amsl.com
Delivered-To: openpgp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 9DAC212011D for <openpgp@ietfa.amsl.com>; Mon, 2 Sep 2019 02:00:47 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -4.3
X-Spam-Level:
X-Spam-Status: No, score=-4.3 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_MED=-2.3, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=neutral reason="invalid (unsupported algorithm ed25519-sha256)" header.d=fifthhorseman.net header.b=u6pKgb/+; dkim=pass (2048-bit key) header.d=fifthhorseman.net header.b=GK09uPIa
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id tZHfjt7UhwD6 for <openpgp@ietfa.amsl.com>; Mon, 2 Sep 2019 02:00:46 -0700 (PDT)
Received: from che.mayfirst.org (che.mayfirst.org [162.247.75.118]) (using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id E358512011C for <openpgp@ietf.org>; Mon, 2 Sep 2019 02:00:45 -0700 (PDT)
DKIM-Signature: v=1; a=ed25519-sha256; c=relaxed/simple; d=fifthhorseman.net; i=@fifthhorseman.net; q=dns/txt; s=2019; t=1567414845; h=from : to : cc : subject : in-reply-to : references : date : message-id : mime-version : content-type : from; bh=OfO0tCIjXvWce22kO3Us5lJv9m2ELixu3Ej81nPabQw=; b=u6pKgb/+AQnmnfHACntjqGuB7uy/jqC0A6mx/4hmo2+nBVCeyjroJKbp HdYEchQnyntZWFH9nXd4udO+PDujDQ==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=fifthhorseman.net; i=@fifthhorseman.net; q=dns/txt; s=2019rsa; t=1567414844; h=from : to : cc : subject : in-reply-to : references : date : message-id : mime-version : content-type : from; bh=OfO0tCIjXvWce22kO3Us5lJv9m2ELixu3Ej81nPabQw=; b=GK09uPIaNNhw/NCVbFYJA2CZl0wTAzxBsDd1thRmx20e0pWLz794F9IY 8MOyifmK3TFG0ASVS82QoOTBRCvcF1ZrFnRIl+5W6ZOQUrq5GXs7gdU1p2 hGpg822DfNEKzBrBF5D3l+9fHIDglYDwLGlkSe/1Y7px5vc5E4AEe3HJEu jY0xfisZbEkNY2k8aw/K7SFYBg3XWO8LzTeBFIjTBtlJqYXX+XdkFVM5Ig rSpmZqTCpdpqpv2m5F/byqgHEnVEH3ZySUzukF2xw3CvNIG93V+eyMkZIl uBeyj/oFcrxWbC0S2oN1+bAQ9xkcfg2dvp6FkL4g8c/KSJNkhxqcwQ==
Received: from fifthhorseman.net (unknown [79.140.208.123]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (No client certificate requested) by che.mayfirst.org (Postfix) with ESMTPSA id 6893BF9A5; Mon, 2 Sep 2019 05:00:44 -0400 (EDT)
Received: by fifthhorseman.net (Postfix, from userid 1000) id 554EF206CA; Sun, 1 Sep 2019 22:22:11 -0400 (EDT)
From: Daniel Kahn Gillmor <dkg@fifthhorseman.net>
To: Benjamin Kaduk <kaduk@mit.edu>
Cc: openpgp@ietf.org, Heiko Stamer <HeikoStamer@gmx.net>
In-Reply-To: <20190831060419.GV84368@kduck.mit.edu>
References: <87tva1am9t.fsf@fifthhorseman.net> <20190831060419.GV84368@kduck.mit.edu>
Autocrypt: addr=dkg@fifthhorseman.net; prefer-encrypt=mutual; keydata= mDMEXEK/AhYJKwYBBAHaRw8BAQdAr/gSROcn+6m8ijTN0DV9AahoHGafy52RRkhCZVwxhEe0K0Rh bmllbCBLYWhuIEdpbGxtb3IgPGRrZ0BmaWZ0aGhvcnNlbWFuLm5ldD6ImQQTFggAQQIbAQUJA8Jn AAULCQgHAgYVCgkICwIEFgIDAQIeAQIXgBYhBMS8Lds4zOlkhevpwvIGkReQOOXGBQJcQsbzAhkB AAoJEPIGkReQOOXG4fkBAO1joRxqAZY57PjdzGieXLpluk9RkWa3ufkt3YUVEpH/AP9c+pgIxtyW +FwMQRjlqljuj8amdN4zuEqaCy4hhz/1DbgzBFxCv4sWCSsGAQQB2kcPAQEHQERSZxSPmgtdw6nN u7uxY7bzb9TnPrGAOp9kClBLRwGfiPUEGBYIACYWIQTEvC3bOMzpZIXr6cLyBpEXkDjlxgUCXEK/ iwIbAgUJAeEzgACBCRDyBpEXkDjlxnYgBBkWCAAdFiEEyQ5tNiAKG5IqFQnndhgZZSmuX/gFAlxC v4sACgkQdhgZZSmuX/iVWgD/fCU4ONzgy8w8UCHGmrmIZfDvdhg512NIBfx+Mz9ls5kA/Rq97vz4 z48MFuBdCuu0W/fVqVjnY7LN5n+CQJwGC0MIA7QA/RyY7Sz2gFIOcrns0RpoHr+3WI+won3xCD8+ sVXSHZvCAP98HCjDnw/b0lGuCR7coTXKLIM44/LFWgXAdZjm1wjODbg4BFxCv50SCisGAQQBl1UB BQEBB0BG4iXnHX/fs35NWKMWQTQoRI7oiAUt0wJHFFJbomxXbAMBCAeIfgQYFggAJhYhBMS8Lds4 zOlkhevpwvIGkReQOOXGBQJcQr+dAhsMBQkB4TOAAAoJEPIGkReQOOXGe/cBAPlek5d9xzcXUn/D kY6jKmxe26CTws3ZkbK6Aa5Ey/qKAP0VuPQSCRxA7RKfcB/XrEphfUFkraL06Xn/xGwJ+D0hCw==
Date: Sun, 01 Sep 2019 22:22:10 -0400
Message-ID: <87o90377zh.fsf@fifthhorseman.net>
MIME-Version: 1.0
Content-Type: multipart/signed; boundary="=-=-="; micalg="pgp-sha512"; protocol="application/pgp-signature"
Archived-At: <https://mailarchive.ietf.org/arch/msg/openpgp/bH8InUcL-5DXFb-Yn1QKBXwLzUw>
Subject: Re: [openpgp] 1PA3PC: first-party attested third-party certifications (making Key Server Prefs no-modify actionable)
X-BeenThere: openpgp@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Ongoing discussion of OpenPGP issues." <openpgp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/openpgp>, <mailto:openpgp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/openpgp/>
List-Post: <mailto:openpgp@ietf.org>
List-Help: <mailto:openpgp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/openpgp>, <mailto:openpgp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 02 Sep 2019 09:00:48 -0000

Hi Ben--

On Sat 2019-08-31 01:04:19 -0500, Benjamin Kaduk wrote:
> It looks like this is in an "IETF Review" registry; please please please
> consider making a request for an RFC 7120 early allocation.
> I know the risk is probably less of conflicting codepoint squatting in
> openpgp than in TLS, but in TLS we managed to have *three* different
> extensions squatting on the same codepoint, and it is pretty unpleasant to
> resolve.

Thanks for this heads-up.  While i agree that an early allocation is a
good idea, given the defunct state of the WG (which is my fault as much
as anyone's), i don't know that we meet the guidelines for IANA early
assignment.  But your perspective and opinion on as security area AD is
welcome -- if you think this is the right thing to do, i'm happy to try
to facilitate it.

Thus far, I've been trying to keep all proposed updates to rfc4880bis
that affect registries/codespace filed in gitlab, where we can track
them to try to avoid collisions:

    https://gitlab.com/openpgp-wg/rfc4880bis/merge_requests

The affected registries thus far outstanding that i'm aware of are:

 * Subpacket Type:

  - 35: Intended Recipient
      (https://gitlab.com/openpgp-wg/rfc4880bis/merge_requests/19)
  - 36: Designated Revoker
      (https://gitlab.com/openpgp-wg/rfc4880bis/merge_requests/18)
  - 37: Attested Certifications
      (https://gitlab.com/openpgp-wg/rfc4880bis/merge_requests/20)

 * Signature Class:

  - 0x16: Attestation Key Signature
      (https://gitlab.com/openpgp-wg/rfc4880bis/merge_requests/20)

I think if we want to get them into an IANA pre-allocation, the next
step is to have a new version of the Internet-Draft published where the
relevant changes are merged, right?

Of these three, it looks to me like "Intended Recipient" (MR 19) already
has multiple interoperable implementations, and "Attested
Certifications"+"Attestation Key Signature" (MR 20) appears to be
relatively uncontroversial.

"Designated Revoker" (MR 18) has raised the most objections on the list,
perhaps in part because it explicitly deprecates the old "Revocation
Key" subpacket.

Perhaps we should make a new revision of rfc4880bis with MRs 19 and 20
merged, since the jury is still out on MR 19.  Then we can use that as
the basis for the IANA pre-allocation.  Does that seem like a reasonable
next step?

     --dkg

v2.23.0 | Report a Bug | By Email