Re: [openpgp] Transport public keys inside the message body
Kai Engert <kaie@kuix.de> Thu, 15 February 2024 09:16 UTC
Return-Path: <kaie@kuix.de>
X-Original-To: openpgp@ietfa.amsl.com
Delivered-To: openpgp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 393ADC14F691 for <openpgp@ietfa.amsl.com>; Thu, 15 Feb 2024 01:16:01 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.107
X-Spam-Level:
X-Spam-Status: No, score=-7.107 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=kuix.de
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id rpFmv4b7V3dx for <openpgp@ietfa.amsl.com>; Thu, 15 Feb 2024 01:15:57 -0800 (PST)
Received: from cloud.kuix.de (cloud.kuix.de [IPv6:2001:8d8:1801:86::1]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 05468C14F685 for <openpgp@ietf.org>; Thu, 15 Feb 2024 01:15:31 -0800 (PST)
Received: from [IPV6:2003:c8:af2a:a300:2b6a:161a:5cd:1ba] (p200300c8af2aa3002b6a161a05cd01ba.dip0.t-ipconnect.de [IPv6:2003:c8:af2a:a300:2b6a:161a:5cd:1ba]) by cloud.kuix.de (Postfix) with ESMTPSA id CB0CE192E17; Thu, 15 Feb 2024 09:15:29 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=kuix.de; s=2018; t=1707988529; bh=qz2nq7wGE4yCcjsNJoP7KK8mEwmmYSATYp3zdokBUU8=; h=Date:Subject:To:Cc:References:From:In-Reply-To:From; b=bP3QOzB2hi3IV60LWGt9AVOBp2Rj6PKJUS/DqCsiO0OyKw8Zp38nm6FWwPorDlOTR NRa4Gjnuup0NgYFiBKjxbVz7kb4AeLJ/7u4rkzIS54nA4vx9xC95qjAdKWOhxslVUX ubhv9rJnK6pOT9OXLDoDHg8Nz7dP4Z+dbo9s3tKpq8JmrY0I6SE7c+06Q5mN7JZVwZ oEHXXSe23u0eUqPU1aHq5i4byFOEjc8+EVPrqpq9DfvvuXXAVVrIeWz/pJ1v86Ubo8 MgJ2lqQGJENi3U7yzYHcFrYs4GQ8rrFi0vR4QbGgtZivv9GI+P4/GEwSqqcCO6IuVK CF4XmqagIxonA==
Message-ID: <56d49119-6633-4a25-a520-8ceaebe6c63a@kuix.de>
Date: Thu, 15 Feb 2024 10:15:29 +0100
MIME-Version: 1.0
User-Agent: Thunderbird Daily
Content-Language: en-US
To: Simon Josefsson <simon=40josefsson.org@dmarc.ietf.org>
Cc: "openpgp@ietf.org" <openpgp@ietf.org>
References: <33b847dd-2dfc-4741-a415-d4636642fef1@kuix.de> <871q9e40lg.fsf@kaka.sjd.se>
From: Kai Engert <kaie@kuix.de>
Autocrypt: addr=kaie@kuix.de; keydata= xsFNBE8oE/UBEAC/Vx4tHVkfPdGf0BFMGcidXzAXKQ4+gI2F5rPBoV9fEtYngLHzm7+a6DL2 v5Jl5b4by9KtUbfIJysR1iniLWMJVPXZcyC4ovGouZ4MGK5cD9kMy+JdwebCs5/tj51vcvrS 08dP7r9Q0f0H7tsqhtVWuPFt+ZZEj8fIxjMgE3Z5BcyoGT1mXQ544RA0vr0fB9MngvfteD3L /wL2miDnYVtwB+VHC6kEB75Pte/yz1kFc/TDqKT8F45M3invhccY8Zwe7F88+uS+tgR5B3Ga RMc9WChZr5ed5vRxSLrGqBGSWBKomKuWXNFVMrZAOaq+W/+kOdNSXLdJSvXIAgV4Gywf1D0r ZTi8V+UoiTY8eDfT4OlBJrbbkge92/lrqaorAsuo/DVmfv7ARk7q2jvbSZD39zkWpLNsAulz gZOr+ffEHKy0f9fNwzenHpKvNtTUWGChEyDf7a6EtTBZsxAYco0xAtFOoQVwx5UzZk4tMVhv lrATrvmFdK5SLroDuwtSLUBJ5MhICyaB1kN7YSatQs33D+M5oPKVC+mn1WB/nznU475cssBW Asw+/K4VtXN08HxVFEvpV5MtpoYGe/cqsV87aVr/Igg45DVKtMMK8W5AmJDdGru3caxdVkkW fis9F1GBkk7ZPgip4cprh3KicuKsXhVrjk2mC/kCR+mrlY8ncQARAQABzSNLYWkgRW5nZXJ0 IChhdCB3b3JrKSA8a2FpZUBrdWl4LmRlPsLBlgQTAQoAQAIbAwIXgAIZAQQLCQgHBRUKCQgL BRYCAwEAAh4BFiEEIdFuZ+GDmMjand8uHCdCNyUAdyQFAmWLSs0FCRdQhNgACgkQHCdCNyUA dyQxvQ/+MbsRZREBvxEIGgZX/WkSrXZ+1ifq7ggj9jdNquFJtVWTYsAbGVJVvT7UXwj7QBUQ 7JlPPkCNN77+/z6VWsV2aWGgkr+NwOwoBWEmbzUyooU5JzSqeDLNVAJaqoZjtrWZIVTe1zSF E2S3oZtpcP+NDQW1BaIVua3EiSxhAhdayvQANWjrXBsfAW/FWat5RRN/bHuO9KXRJlKrTRUU c5FW4JQPyCnQGpaYMEphWbwzpRaUCmbtajnWL/xyPbx4LJLFcHKKtHYrMVwSpoVEVCMqNsht 4NN4M4ZdMpIDcpsv2p73BZA5V6GEq1wgEBxWbnHMcXuRMYOaIzou5Ld0+6AvAza2uwu10A4T PDm8LuZ2cVzd9jU4hgVZPNvTl77aDaejXNNC9eeDa1T1dlwCd8Ru9nkPt+nAn/vgDo6FhrJN 2obfFroKDoudUnz6Z5bNkKGOOsyGlozHO4FExUzmKb47kpHGMtIIXLeAtoUeEJNneONX+x/s PAY3lg+ocxpJjI4fgYhXDuG+chZ5ThWKVcoPz7CabQ6A7RpjV/bvv0gkqQy7Q9F1ZcXBChlO 6f0R34vcYIupAstFA53I3k3BJw4gE/jKQmb/r/wHYrluTQWddi01CqOKZaNVP7zLrPGl9EaB GZl5njPYcxSn3vJTsXNQRH/oMCV/qOYsmgqLKqE/yZTOwU0ETygT9QEQAOeCVNPVcwTj8OOC GCDYrkABHsopDubC0/iMXnvDDPk/LV5NGfUUsFFXLbvA8DPn/DY0SPnb5hkoHs7IjS9WZFbj d+xjOHYO2SfKGQgef2EEAgsdc+6uHevF7BH07HnZfmNhnIIG0ehKTeEW0d/DerocChWcNJnr j+ptTWkQp4oXIia13aCsV3KBwMct22pRkzwG7zlJkGqiO3WOQ1RTzk+SNsJdXFm5JE3MeMLv NfdLEjHlvyG8CIO4pwv56lwkii+t9/h7/9hnFc7wTSvCcTuWGh7h5fhgcD+nB5aLR3dqq/wU soWArdwnDAx10fr8EsGsAvv81KUeUx61S0+hP4ZaQGV+R0LGPQTK5ZSNAKezApY/pL0ZZLpD X3N/wiqQC9UYw1efrK/dX3wTV22YKbKd/7giOkLiaRXVGPI7OWmDcBwhW1/MZM3Rahveb7fr jaKvxe6e3REItwRNB9m9HOJLiV+BvTKwCncn2K9Soj1+ddwEHiF2QhPVKIDjeY7yhejwU07s 6JrAmQWvRMW5C7/rgpu0PhAuFsL76W1Gmi6ZrrfqKp7Eq2HoYOMnZuTUYYHycvkYrNbCgKbc gOwJQ1lrD+XxWRNK8XqA603W1+iVY8U+dPQ7VmuKyNKoBk7etuSeoq5up32xfDNVeWWgZkrL Vgvzw3YILH5d+Wm0B8ZPABEBAAHCwXwEGAEKACYCGwwWIQQh0W5n4YOYyNqd3y4cJ0I3JQB3 JAUCZYtK0wUJF1CE3gAKCRAcJ0I3JQB3JBOFD/4p0Kl/d9MMCwxrZFnDrFxYqlL53HFlIvM6 nCyXg13s2SACj4z4OBN21/mEPj4NhoUWusx/F25FFTw9rANQdtWJWFt1T218D3iK3ZS89+kO epS2U9Co+uKB4IXwewtKjrRIjjPIRxwIozMTlxkl4Suz/YI+sX8IAeFu61cuwEmZqfbPKm+H gfV+AIpzOzt/e//+0T75lJaSLQo9zW+umSC8Y1sQev0t2QdEiJI6w6c9zLmpfiz0AzFtt7Ec OEBTC03OxpqE+IqXi60GRAZBgJOSCOTcq/a4xc6UVF7uGmSX0GB7fJeK+HwukdptzSjGAnnz bbUd2ox+W7G+Mp0dDowjTWAakBd4je+oXNrpkC7gDfIjqfGVF/SFasehd1Q3nY+l3rj7YHhF 9sJWiDW3McDsJcWvQaqu48stfLaAf6pz+IzQFSwuDw2c2i/zy/7gGzpt0TlMef4ys9YQGoMQ WG0hdUDqv6KFgprk7Y4uuzhZ9cYZFac4/vfVjdZG6RS9Ipio0CnM2yzY6JSAAEW6STJ2EwkX EDaNWtzMbi0wzhmCUoPAQ4zuP1kg9wXwODPLWhIUTEQu0us/qvVlikm3G/AJv7iUbTCqfD2w duHGJhsPQNAOm9VQw/oRWZOyF2b/rPVI7pykDAQK0wvgLYpWFsvYEeFSTkKfwng8LGepk2rk Bw==
In-Reply-To: <871q9e40lg.fsf@kaka.sjd.se>
Content-Type: text/plain; charset="UTF-8"; format="flowed"
Content-Transfer-Encoding: 7bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/openpgp/cjq2ogKq19b4ilEaYmJ6M1SEtGY>
Subject: Re: [openpgp] Transport public keys inside the message body
X-BeenThere: openpgp@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "Ongoing discussion of OpenPGP issues." <openpgp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/openpgp>, <mailto:openpgp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/openpgp/>
List-Post: <mailto:openpgp@ietf.org>
List-Help: <mailto:openpgp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/openpgp>, <mailto:openpgp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 15 Feb 2024 09:16:01 -0000
Hi Simon, On 15.02.24 09:02, Simon Josefsson wrote: > I re-read RFC 3156 and one way to do this is "extend" it by allowing > putting a public key block before or after the '-----BEGIN PGP > MESSAGE-----' block, and say that MUAs can parse those blocks to find > keys. Yes, that is a bit ugly, but overall complexity is lower than > having multipart MIME blobs with an extra application/pgp-keys > component, and solves the problem of locating which public key was (by > the sender) intended for use with the signature. As I understand it, your proposed solution is limited to transport the key in signed and/or encrypted messages. It might be useful to specify a mechanism to transport the key in messages that are neither signed nor encrypted, and which don't include a "BEGIN PGP MESSAGE". A more general solution could allow users to include their public key in all messages they send. > Maybe the old OpenPGP: e-mail header with fingerprint and URL should be > revived... https://josefsson.org/openpgp-header/ and > https://datatracker.ietf.org/doc/html/draft-josefsson-openpgp-mailnews-header I don't mind encouraging MUAs to include this header, if possible, but it seems the header couldn't solve the goal for a significant number of users, who may not know how to make their public key accessible at an URL. Kai
- [openpgp] Transport public keys inside the messag… Kai Engert
- Re: [openpgp] Transport public keys inside the me… Simon Josefsson
- Re: [openpgp] Transport public keys inside the me… Kai Engert
- Re: [openpgp] Transport public keys inside the me… Kai Engert
- Re: [openpgp] Transport public keys inside the me… Bart Butler
- Re: [openpgp] Transport public keys inside the me… Andrew Gallagher
- Re: [openpgp] Transport public keys inside the me… Kai Engert
- Re: [openpgp] Transport public keys inside the me… Simon Josefsson
- Re: [openpgp] Transport public keys inside the me… Bart Butler
- Re: [openpgp] Transport public keys inside the me… Bart Butler
- Re: [openpgp] Transport public keys inside the me… Wyllys Ingersoll
- Re: [openpgp] Transport public keys inside the me… Kai Engert
- [openpgp] Transporting certificates in messages [… Daniel Kahn Gillmor
- Re: [openpgp] Transport public keys inside the me… Steffen Nurpmeso
- Re: [openpgp] Transport public keys inside the me… Werner Koch
- Re: [openpgp] Transport public keys inside the me… Bart Butler
- Re: [openpgp] Transport public keys inside the me… Daniel Kahn Gillmor
- Re: [openpgp] Transporting certificates in messag… Kai Engert
- Re: [openpgp] Transporting certificates in messag… Bart Butler
- Re: [openpgp] Transporting certificates in messag… Orie Steele
- Re: [openpgp] Transporting certificates in messag… Kai Engert
- Re: [openpgp] Transporting certificates in messag… Andrew Gallagher
- Re: [openpgp] Transport public keys inside the me… Simon Josefsson
- Re: [openpgp] Transporting certificates in messag… Peter Gutmann
- Re: [openpgp] Transporting certificates in messag… Andrew Gallagher
- Re: [openpgp] Transporting certificates in messag… Andrew Gallagher
- Re: [openpgp] Transporting certificates in messag… Andrew Gallagher
- Re: [openpgp] Transporting certificates in messag… Andrew Gallagher
- Re: [openpgp] Transporting certificates in messag… Bart Butler
- Re: [openpgp] Transporting certificates in messag… Daniel Kahn Gillmor
- Re: [openpgp] Transport public keys inside the me… Daniel Kahn Gillmor
- Re: [openpgp] Transporting certificates in messag… Kai Engert
- Re: [openpgp] Transporting certificates in messag… Andrew Gallagher
- Re: [openpgp] Transporting certificates in messag… Bart Butler
- Re: [openpgp] Transporting certificates in messag… Daniel Kahn Gillmor
- Re: [openpgp] Transporting certificates in messag… Andrew Gallagher
- [openpgp] Alternate signed-only e-mail structure … Daniel Kahn Gillmor
- Re: [openpgp] Transporting certificates in messag… Daniel Kahn Gillmor
- Re: [openpgp] Alternate signed-only e-mail struct… Stephen Farrell
- Re: [openpgp] Transporting certificates in messag… Michael Richardson
- Re: [openpgp] Alternate signed-only e-mail struct… andrewg
- Re: [openpgp] Alternate signed-only e-mail struct… Daniel Huigens
- Re: [openpgp] Alternate signed-only e-mail struct… Andrew Gallagher
- Re: [openpgp] Transporting certificates in messag… Johannes Roth
- Re: [openpgp] Transporting certificates in messag… Daniel Huigens
- Re: [openpgp] Transporting certificates in messag… Steffen Nurpmeso
- Re: [openpgp] Transporting certificates in messag… Steffen Nurpmeso
- Re: [openpgp] Transporting certificates in messag… Andrew Gallagher
- Re: [openpgp] Transporting certificates in messag… Andrew Gallagher