IETF Logo Mail Archive

Re: [openpgp] Fingerprints

Werner Koch <wk@gnupg.org> Fri, 10 April 2015 15:31 UTC

Return-Path: <wk@gnupg.org>
X-Original-To: openpgp@ietfa.amsl.com
Delivered-To: openpgp@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A5E461A1BB9 for <openpgp@ietfa.amsl.com>; Fri, 10 Apr 2015 08:31:37 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -6.9
X-Spam-Level:
X-Spam-Status: No, score=-6.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_HI=-5] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 3lfejesbcrJR for <openpgp@ietfa.amsl.com>; Fri, 10 Apr 2015 08:31:35 -0700 (PDT)
Received: from kerckhoffs.g10code.com (kerckhoffs.g10code.com [217.69.77.222]) (using TLSv1.2 with cipher DHE-RSA-AES128-SHA (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 5DDEF1A1AF0 for <openpgp@ietf.org>; Fri, 10 Apr 2015 08:31:35 -0700 (PDT)
Received: from uucp by kerckhoffs.g10code.com with local-rmail (Exim 4.80 #2 (Debian)) id 1Ygau5-0004Hu-Sb for <openpgp@ietf.org>; Fri, 10 Apr 2015 17:31:33 +0200
Received: from wk by vigenere.g10code.de with local (Exim 4.84 #3 (Debian)) id 1YgapU-00076s-89; Fri, 10 Apr 2015 17:26:48 +0200
From: Werner Koch <wk@gnupg.org>
To: Derek Atkins <derek@ihtfp.com>
References: <CAMm+LwhbB+-MnGRBCvprgAGOuu+5CJ2rgod7EBGOQR5UNVrspQ@mail.gmail.com> <87y4m0ozlt.fsf@vigenere.g10code.de> <sjmk2xkf2t8.fsf@securerf.ihtfp.org>
Organisation: g10 Code GmbH
X-message-flag: Mails containing HTML will not be read! Please send only plain text.
OpenPGP: id=F2AD85AC1E42B367; url=finger:wk@g10code.com
Mail-Followup-To: Derek Atkins <derek@ihtfp.com>, Phillip Hallam-Baker <phill@hallambaker.com>, "openpgp\@ietf.org" <openpgp@ietf.org>, Stephen Farrell <stephen.farrell@cs.tcd.ie>
Date: Fri, 10 Apr 2015 17:26:47 +0200
In-Reply-To: <sjmk2xkf2t8.fsf@securerf.ihtfp.org> (Derek Atkins's message of "Fri, 10 Apr 2015 10:58:11 -0400")
Message-ID: <87iod4ovgo.fsf@vigenere.g10code.de>
User-Agent: Gnus/5.13 (Gnus v5.13)
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Archived-At: <http://mailarchive.ietf.org/arch/msg/openpgp/jI-AYF9mI_WjojstasbWyZxaDBA>
Cc: Stephen Farrell <stephen.farrell@cs.tcd.ie>, Phillip Hallam-Baker <phill@hallambaker.com>, "openpgp@ietf.org" <openpgp@ietf.org>
Subject: Re: [openpgp] Fingerprints
X-BeenThere: openpgp@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "Ongoing discussion of OpenPGP issues." <openpgp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/openpgp>, <mailto:openpgp-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/openpgp/>
List-Post: <mailto:openpgp@ietf.org>
List-Help: <mailto:openpgp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/openpgp>, <mailto:openpgp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 10 Apr 2015 15:31:37 -0000

On Fri, 10 Apr 2015 16:58, derek@ihtfp.com said:

> I presume here you are referring to the "printed" fingerprint, and not
> the "internal" fingerprint?  Internally we'd still use the full length,
> right?  Or would we need to somehow know when (and how) to truncate the

Sure, just for the printed one.  Internally we should alway use the full
fingerprint with algorithm id.  If we want to have the smallest possible
signature it is possible to not emit the new IssuerFingerprint signature
subpacket.

> Similarly, I think we should be clear that we're talking about two
> different things here.  Internally (e.g. in a signature packet) it
> should be the binary result, not hex- or base-32 encoded.

Sure.  Although this is not part of the wire format it is important to
have a standard on how a fingerprint is presented to the user.


Shalom-Salam,

   Werner

-- 
Die Gedanken sind frei.  Ausnahmen regelt ein Bundesgesetz.

v2.23.0 | Report a Bug | By Email