Re: [openpgp] [openpgp-email] Keyserverless Use of OpenPGP in Email

"Neal H. Walfield" <neal@walfield.org> Tue, 12 April 2016 14:53 UTC

Return-Path: <neal@walfield.org>
X-Original-To: openpgp@ietfa.amsl.com
Delivered-To: openpgp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BB15E12DFB3 for <openpgp@ietfa.amsl.com>; Tue, 12 Apr 2016 07:53:30 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.901
X-Spam-Level:
X-Spam-Status: No, score=-1.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_HELO_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id zDpENSUGjy2r for <openpgp@ietfa.amsl.com>; Tue, 12 Apr 2016 07:53:29 -0700 (PDT)
Received: from mail.dasr.de (mail.dasr.de [217.69.77.164]) by ietfa.amsl.com (Postfix) with ESMTP id 307BD12E03E for <openpgp@ietf.org>; Tue, 12 Apr 2016 07:53:29 -0700 (PDT)
Received: from p5ddf9109.dip0.t-ipconnect.de ([93.223.145.9] helo=grit.huenfield.org.walfield.org) by mail.dasr.de with esmtpsa (TLS1.0:RSA_AES_128_CBC_SHA1:16) (Exim 4.76) (envelope-from <neal@walfield.org>) id 1apzgw-0000bd-6i; Tue, 12 Apr 2016 14:53:22 +0000
Date: Tue, 12 Apr 2016 16:53:23 +0200
Message-ID: <87y48iri8s.wl-neal@walfield.org>
From: "Neal H. Walfield" <neal@walfield.org>
To: OpenPGP-based Email Encryption <openpgp-email@enigmail.net>
In-Reply-To: <146047167027.5102.16171502176440717800@KingMob>
References: <20160412121549.GB16775@littlepip.fritz.box> <20160412154918.1ca8da7c@latte.josefsson.org> <146047167027.5102.16171502176440717800@KingMob>
User-Agent: Wanderlust/2.15.9 (Almost Unreal) SEMI-EPG/1.14.7 (Harue) FLIM/1.14.9 (Gojō) APEL/10.8 EasyPG/1.0.0 Emacs/24.5 (x86_64-pc-linux-gnu) MULE/6.0 (HANACHIRUSATO)
MIME-Version: 1.0 (generated by SEMI-EPG 1.14.7 - "Harue")
Content-Type: text/plain; charset="US-ASCII"
Archived-At: <http://mailarchive.ietf.org/arch/msg/openpgp/kRUF0WLpiYZhOG6Pf6dFr_2nw8c>
Cc: Simon Josefsson <simon@josefsson.org>, IETF OpenPGP <openpgp@ietf.org>, Vincent Breitmoser <look@my.amazin.horse>
Subject: Re: [openpgp] [openpgp-email] Keyserverless Use of OpenPGP in Email
X-BeenThere: openpgp@ietf.org
X-Mailman-Version: 2.1.17
Precedence: list
List-Id: "Ongoing discussion of OpenPGP issues." <openpgp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/openpgp>, <mailto:openpgp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/openpgp/>
List-Post: <mailto:openpgp@ietf.org>
List-Help: <mailto:openpgp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/openpgp>, <mailto:openpgp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 12 Apr 2016 14:53:30 -0000

On Tue, 12 Apr 2016 16:34:30 +0200,
Ruben Pollan wrote:
> We even dream to have some crappy forward secrecy by rotating encryption 
> subkeys often, and deleting them from the keyring.

Take a look at puncture encryption:

  https://isi.jhu.edu/~mgreen/forward_sec.pdf

Matt wants to see this get integrated into OpenPGP at some point, but
there are some issues.  For instance, using puncture encryption, the
private key can get larger than 64k, which is the current limit for
OpenPGP private keys.

:) Neal