IETF Logo Mail Archive

Re: [openpgp] [internet-drafts@ietf.org] New Version Notification for draft-ietf-openpgp-rfc4880bis-10.txt

Derek Atkins <derek@ihtfp.com> Wed, 02 September 2020 20:28 UTC

Return-Path: <derek@ihtfp.com>
X-Original-To: openpgp@ietfa.amsl.com
Delivered-To: openpgp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 5B5BF3A0E95 for <openpgp@ietfa.amsl.com>; Wed, 2 Sep 2020 13:28:37 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.099
X-Spam-Level:
X-Spam-Status: No, score=-2.099 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=ihtfp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id GU61Xv28-W9D for <openpgp@ietfa.amsl.com>; Wed, 2 Sep 2020 13:28:35 -0700 (PDT)
Received: from mail2.ihtfp.org (MAIL2.IHTFP.ORG [204.107.200.7]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 88BE13A0E92 for <openpgp@ietf.org>; Wed, 2 Sep 2020 13:28:35 -0700 (PDT)
Received: from localhost (localhost [127.0.0.1]) by mail2.ihtfp.org (Postfix) with ESMTP id 9435BE203F; Wed, 2 Sep 2020 16:28:34 -0400 (EDT)
Received: from mail2.ihtfp.org ([127.0.0.1]) by localhost (mail2.ihtfp.org [127.0.0.1]) (amavisd-maia, port 10024) with ESMTP id 21303-09; Wed, 2 Sep 2020 16:28:32 -0400 (EDT)
Received: by mail2.ihtfp.org (Postfix, from userid 48) id 8A599E2040; Wed, 2 Sep 2020 16:28:32 -0400 (EDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=ihtfp.com; s=default; t=1599078512; bh=wQPzDMxG7mnNJIA5PDIrKFUeKemvwW13z5jJdipKrCQ=; h=In-Reply-To:References:Date:Subject:From:To:Cc; b=s4YvREutDCYFeSkIa5osAeMbxPD7B8UyInkOaBpXRxRlJi/JH6jRce28CdbBnrgKi tLZyogvOOdAYu78bhavJwRs10tAh3Gu8jXq6d0/G0XKRtcHWaYpWqyyAqhGb0sCnHY QxUM2hE2ryCtIAdlJDXnK6Q5L19L2agHmhuWiCZs=
Received: from 192.168.248.158 (SquirrelMail authenticated user warlord) by mail2.ihtfp.org with HTTP; Wed, 2 Sep 2020 16:28:32 -0400
Message-ID: <c973958c31f4f5ee28069fa3dbe400bb.squirrel@mail2.ihtfp.org>
In-Reply-To: <87a6y89c6n.wl-neal@walfield.org>
References: <87pn763mvq.fsf@wheatstone.g10code.de> <alpine.LRH.2.23.451.2009021248000.848176@bofh.nohats.ca> <faf8cb6e433e259dff5f8554fbf4e9eb.squirrel@mail2.ihtfp.org> <87r1rkys6m.fsf@wheatstone.g10code.de> <alpine.LRH.2.23.451.2009021446110.850851@bofh.nohats.ca> <d45099120b229fd6a3d223b4e32c68f5.squirrel@mail2.ihtfp.org> <87a6y89c6n.wl-neal@walfield.org>
Date: Wed, 02 Sep 2020 16:28:32 -0400
From: Derek Atkins <derek@ihtfp.com>
To: "Neal H. Walfield" <neal@walfield.org>
Cc: Derek Atkins <derek@ihtfp.com>, openpgp@ietf.org
User-Agent: SquirrelMail/1.4.22-14.fc20
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 8bit
X-Priority: 3 (Normal)
Importance: Normal
X-Virus-Scanned: Maia Mailguard 1.0.2a
Archived-At: <https://mailarchive.ietf.org/arch/msg/openpgp/ihlYvP1G3AlsnVYhRPWxaxaQ3HI>
Subject: Re: [openpgp] [internet-drafts@ietf.org] New Version Notification for draft-ietf-openpgp-rfc4880bis-10.txt
X-BeenThere: openpgp@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Ongoing discussion of OpenPGP issues." <openpgp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/openpgp>, <mailto:openpgp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/openpgp/>
List-Post: <mailto:openpgp@ietf.org>
List-Help: <mailto:openpgp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/openpgp>, <mailto:openpgp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 02 Sep 2020 20:28:37 -0000

Hi Neal,

On Wed, September 2, 2020 4:05 pm, Neal H. Walfield wrote:
> Hi Derek,
>
> On Wed, 02 Sep 2020 20:59:34 +0200,
> Derek Atkins wrote:
>> Having said that, there was certainly discussion about the "revert to
>> 4880
>> requirement for a user id packet" change.  I don't recall the other
>> topic.
>
> As of draft 9 (published 9 March 2020) the User ID packet was still
> optional.
> In draft 10 (published 31 August 2020) that change was reverted.
>
>   https://tools.ietf.org/html/draft-ietf-openpgp-rfc4880bis-09#section-11.1
>   https://tools.ietf.org/html/draft-ietf-openpgp-rfc4880bis-10#section-11.1
>
> It was reverted specifically by this commit:
>
>   Revert to the RFC4880 requirement of having a User ID.
>
>   With the below referenced patch Derek Atkins integrated his
>   "Device-Certificate Draft" to allow the use of a stripped down OpenPGP
>   key by space constrained devices.  The draft was never meant as a
>   general lifting of requirements which were intentionally introduced
>   when formalizing the old PGP 2 formats as OpenPGP.  This patch
>   clarifies this.
>
>   https://gitlab.com/openpgp-wg/rfc4880bis/-/commit/6fd718d39fc8db20e4731350899db1b7c48c721e
>
> which was made on 12 March 2020.
>
> Between January 25, 2020 and March 12, 2020, there was one mail to
> this mailing list, which was a message from DKG about the stateless
> openpgp cli.  I reviewed the archives from the past year, but I
> couldn't find this discussed.  Did I miss something?
>
>   https://mailarchive.ietf.org/arch/browse/openpgp/?

There is a thread that started by Justus Winter on February 20, 2019,
Subject "User ID Attribute Subpacket", which began the conversation to
revert back to the RFC4880 definitions.  The thread kind of ended on March
8, 2019, but no changes were made to the draft at that time.  Search the
archive for "attribute" to easily find the thread.

My guess is that Werner took his time to update the spec based on the
conversations.

> FWIW, my position and, as I understand it, Justus' and Vincent's is
> that User IDs ought to be optional.  In fact, Hagrid is built around
> that assumption, and Sequoia explicitly supports it.

That was not the conversation that was had, and Vincent was not involved
in the thread at all.  But then again re-reading this thread it was about
why have User-Id Attribute Subpacket in addition to the UserID packet.. 
It wasn't specifically about reverting the change to make UserIDs
optional.

> Thanks,
>
> Neal

-derek

-- 
       Derek Atkins                 617-623-3745
       derek@ihtfp.com             www.ihtfp.com
       Computer and Internet Security Consultant

v2.23.0 | Report a Bug | By Email