Re: [openpgp] OpenPGP Web Key Directory I-D

Wiktor Kwapisiewicz <wiktor@metacode.biz> Fri, 09 November 2018 11:37 UTC

Return-Path: <wiktor@metacode.biz>
X-Original-To: openpgp@ietfa.amsl.com
Delivered-To: openpgp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4353A130DE9 for <openpgp@ietfa.amsl.com>; Fri, 9 Nov 2018 03:37:16 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.001
X-Spam-Level:
X-Spam-Status: No, score=-2.001 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=metacode.biz
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ukujIFq1Pn1O for <openpgp@ietfa.amsl.com>; Fri, 9 Nov 2018 03:37:14 -0800 (PST)
Received: from mail-lj1-x22d.google.com (mail-lj1-x22d.google.com [IPv6:2a00:1450:4864:20::22d]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A19C7130DDA for <openpgp@ietf.org>; Fri, 9 Nov 2018 03:37:13 -0800 (PST)
Received: by mail-lj1-x22d.google.com with SMTP id t9-v6so1306360ljh.6 for <openpgp@ietf.org>; Fri, 09 Nov 2018 03:37:13 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=metacode.biz; s=2017; h=to:references:cc:from:openpgp:autocrypt:organization:subject :message-id:date:mime-version:in-reply-to:content-language :content-transfer-encoding; bh=8o66T3ABvQN+RAR/JPcgktb2KtAuf8F5wfDc4qi+5OU=; b=duEQMUnje9jlgeQmTT0XlvQIYBJHi83M/i7DVd5+ZSse9mL+SltVosnLyE17GJ8Ik+ 4HOE7SYtdQnZNXkzTGxwoVVTSNhT9qhS9tNCzzrjcFsf1EumG93QSTqqRezE1jhX2LjN rt9sGkyBbzBa/qvIdBKUGIqc7mMOiOfM4co79Y8+ZRKMJsXv+nkwZGTk3pzokB7VyaOM YxHycZBSQslDCJ3WtH9Fd86eSPAdOGTvyfT0qI2+ifWPvFOXOVbph0bExI6o4asBIEnW Expp5foHc2xxiEIWbx56l8sua6WV17MNmatubW6Vxkt5VsW16z+XLepIMFwWmyEpGAdw EAkg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:to:references:cc:from:openpgp:autocrypt :organization:subject:message-id:date:mime-version:in-reply-to :content-language:content-transfer-encoding; bh=8o66T3ABvQN+RAR/JPcgktb2KtAuf8F5wfDc4qi+5OU=; b=IjPwsDvisGDHkm1kICeIH7L4c/DveArp45fE57UGc+7cs6+RmCFZLQwFA38tvLiEcT aAMoKLJ9TQ1PGHR7kuNwLoHA5qIdSol6ceCJXSVYycDtED7whljcrOlu4gjaklknGf4A 5vNS6s/ossc4Tk3lM42/pywTg0lU7jwVxiwdZY6w84LIXXgAmxvFIafYS11D4wnx/VDB l/qXJGEsKueMqtjy25h2B62fbGITZEMYTMkLx/kgzGFUJVL4OJtX+4NzuZgGPPMt/tff 89g4Xoxb1O+8LDk5aaMT3XD2vc5noYXgfNc2Z+BcYvoacyENl+JW1F6Cb1KrjUJNETjq vjXg==
X-Gm-Message-State: AGRZ1gITlHYroQTQDCPrySi2MzXsSM3eN9MUDXYbVtXHQoA+x5DUatzb RpMtYmCjD25WMw3cfTGWWssf1LWRsoQ=
X-Google-Smtp-Source: AJdET5cBUzHQ+et7B8YI7uTsnGBr0JrIBgA5MbAeHW55iMQlBzAcvVd15RRDDhPa5VL/dH86yJOMvQ==
X-Received: by 2002:a2e:7c13:: with SMTP id x19-v6mr5236951ljc.83.1541763431209; Fri, 09 Nov 2018 03:37:11 -0800 (PST)
Received: from ?IPv6:2a02:a317:4e3d:4680:f6ed:4b3c:7510:34c3? ([2a02:a317:4e3d:4680:f6ed:4b3c:7510:34c3]) by smtp.googlemail.com with ESMTPSA id m6-v6sm1288673ljh.16.2018.11.09.03.37.10 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Fri, 09 Nov 2018 03:37:10 -0800 (PST)
To: Werner Koch <wk@gnupg.org>
References: <23523.16831.292658.490356@chiark.greenend.org.uk> <874lcsyr3p.fsf@wheatstone.g10code.de> <23525.26229.995360.750323@chiark.greenend.org.uk> <87r2fuv6sh.fsf@wheatstone.g10code.de>
Cc: openpgp@ietf.org
From: Wiktor Kwapisiewicz <wiktor@metacode.biz>
Openpgp: preference=signencrypt
Autocrypt: addr=wiktor@metacode.biz; keydata= xsFNBFhoYHoBEADzmg9UuwDrtvyejU01gDY1J1iJiCi4XGJ4lCfYeLC2jSagIxU/5Lu0lRft 0Loi2tsjpo0c8docP7HFxafEEvnnt/iabd6I536llMuw0uno4PgnD3ljcCMZLT+vn+amIDta lzVoMnSqzoNUotMNMtjIFuAaQ/wr4/Mp9CIgJdviGUc3PscqUiiUVVtk6uF0x657NULZgSIT /Mrqlr2i4RuyPwXe2Qt0uEA3KWWjF0l2NpAMVrqz+nHsLoNOaAsfdx94bzKQrrSeSQqEO2f+ /eO/hbUAFAmEhrotmUO8wJNygo8TgkdlzFI+UE4p8/KW0aCgGGgR8YkCvHq2OQhAAYFNJoNz Hqw0FGxdsY8qWFkYpoSB8zKspNy8KliofCamMYXoPF7eVIxIiKvxrAykGP4jNnzSoV0cn+bY fXnox1IhnqbnoJIT7kTmXv4JmWoYm8ThHqpEgcQOUUQzSRXb9OiNwiXT71ijeO1qswMRpsgk 6AGKSZGWxa3c4ive/p8z1Ax27BFZSh2FceIcMCcGLrDjnQYgeFsAJ1jSxZQXkGuJFHfb4nff Big7aq/vyKrQFQXG0NQQL7rZAdk/s665vifos0yPmRDu7yDT1ggdyBp4Pa4re+ZJcNRNzNHo zU9al+CoImCQjnTtKMXmOe/BzGrpHI4QR3NNzVa423WCIWkHfwARAQABzSlXaWt0b3IgS3dh cGlzaWV3aWN6IDx3aWt0b3JAbWV0YWNvZGUuYml6PsLB7gQTAQoAmAIbAQgLCQgHDQwLCgUV CgkICwIeAQIXgHMUgAAAAAAqAEB0aW1lc3RhbXArYml0Y29pbi10cmFuc2FjdGlvbkBtZXRh Y29kZS5iaXphZmNiMDkyYzVjYTY0MDk1MjZkMThhZTljZjIyZDNiNTVkMzdlNzIzZWIxYjc0 ZTNmODRmN2U2YjA1MmExNjJhBQJaLoPdBQkDwPuGAAoJEGyIV+DY6PB0CNkQAKGTFHzG4YO6 yne5jfMlGcF8JUYq0EGHE9DRK6oAyGo+1TGFbf1bS4wULvA6LFBOLd+aI7uuN062kDdtHVUf 0S0AZ9ByjIBdQJsqx47W6uXsRX/pB0a70QqS6NbS3AL/fdwZOj/TBk8bdsfg7Z+hH+ykMcOs EYLmdMLmrqYgl9EyP4FmsnU9H8x4yKp0/Kv4BQYfjn68CFvyM2NQU3MR/H3sqvM/uY5AJwTp A8X1ZbN8pjZO5YRTiQtMrXekNzhP3p0ep1+cu2UxQO6jXV6Sjdm8D8RJzGaxCuhN/VhLNSvh cb2T5sejBAhU8JmKNle4+z5wZWB4bl5Dfkg1NpSEEdv7so+KXCnszo89UJJijlfgBFtm5WjK u7gCR8CVOeGQwQolEzi18zihCwRy1rg/xKokk7q6ZBEvxM1sBYNd81mi1PgrNwgH4jPULfQk UJtU7HLRVNLbnrIyEQbLOJegBLaWHgR4T69blBGg1oqiq/1PHnZuJauZhhNEAViX42VKJP1z w6PIfvbjg27wf4OjEDtVVXCrxqqljHRilagFQHGlU+iF6Ii2C3pNod11+lqJC0riFylxK/wu zHpoZdFg10gqMWIE2Exm7nJ6ToKv5kZqKC97mWrmh6FFEr6HmjDDuo+N4RER3VGj0dSey5nc eFQ2vry17IGN1ljV9TiARDgizsBNBFs/lS0BCAC5oX3r3luF7czMF8UFxJz55XuvNRs4tEjo Hzqcqoe4+RJyfNDtspgevYIq1WTKw/H3ZYsd2wZpkM3I+BJn9eeHZKs77qXQZGN5PBB65rZo LjMx+qHa6wH4lIYMYW7eB9HHMsT/5E3ILBSRzZIwJimd/QdIMKSrJ5mPMkAd+9+xob5zKHO5 L5pbQtJSGS0m17/hA0kCTLI885hLtT3JsI/KWwuAYDrTwsayzh/hG/NgdA3I8xlrQCLC0EFJ oxHkN9tCyXeKPlrIPYyMB1jHTo1iNV0CQGpk+zf6DA/ySGfJxd30ksJZ8y5qxD43zS0YffYM C01CeuqPoGZ2Fy9VxhODABEBAAHCwXwEGAEKACYWIQRlOQmi8ON8EG9fr1RsiFfg2OjwdAUC Wz+VLQIbDAUJAeEzgAAKCRBsiFfg2OjwdKQ4D/wIb8s2Tw8MhbbwASutzTwg3g3KReDRHgSz z7RJtePIM8HC6qm9++9sxoqww7qm35vb604HtMRORYmfXgVSocsYg/eAk8LoBVfCZidDVBia /i/dYx/8LHeX/0PqPluSusQh64BFUoVetUCP+kISbK8vgDt4HfDSgtenC5lpTAdk257A84p2 zDnUtVr8XNv09m7ASft6Wh5Wrn+aWlJrf6T6eysk9OIw8VpSuq0oG3vcEoTbHKJN8TDliPUc QVz5Qti0tgB40PLrqOpTdENdxbiaUNFpHm3Tkk+n7CEFcOayFvy5vU6Nih0hu+LFC2XHzQRw sLnuQ2EilWtXRulcwvFo6A3Vp+gidxc6UwC+LBFJjvDMv5hmsdhSm08r2hd2k61oL6NCGVB3 fxuJT85UHsEC04N72Fa26+Spkh3DtJMrKqJlBBas7oJYh6644DB4rccd6VT3n7Zv1pd2uIWv gjORztfBzRJEysOeHoNpr4hEocg62beu9cnGHpYB9j3mhv+E2IYPnJKqit18G7xb7QnyQU7L YfctLO0GLNdTBavWJggHPzUp09vb3uGS3dMdAYbWTBtnXttkdYuLx/oCe1LVUQYotsX7s83V kVc2n6xzrcaebmgoFtGUfUmOV0U0xbqv6Mxg27qctYh1QidvRyt0xqGA0Qhz/vvoQdfQeMlO Tg==
Organization: Metacode
Message-ID: <50990b61-ddff-93c7-ca96-ff864d1f4d79@metacode.biz>
Date: Fri, 9 Nov 2018 12:37:07 +0100
MIME-Version: 1.0
In-Reply-To: <87r2fuv6sh.fsf@wheatstone.g10code.de>
Content-Type: text/plain; charset=utf-8
Content-Language: en-US
Content-Transfer-Encoding: 8bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/openpgp/kpIAOPKH7Y8BVb5uci3IU1Wz9eE>
Subject: Re: [openpgp] OpenPGP Web Key Directory I-D
X-BeenThere: openpgp@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Ongoing discussion of OpenPGP issues." <openpgp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/openpgp>, <mailto:openpgp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/openpgp/>
List-Post: <mailto:openpgp@ietf.org>
List-Help: <mailto:openpgp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/openpgp>, <mailto:openpgp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 09 Nov 2018 11:37:16 -0000

On 09.11.2018 12:17, Werner Koch wrote:
> The only simpler thing which could have been done would be to skip the
> hashing and directly use the z-base-32 encoding.  The only drawback
> would have been that very long addresses won't work on all file systems.

There is also base64*url* variant that is "URL-safe":

https://en.wikipedia.org/wiki/Base64#URL_applications

It's widely used in several "Web" technologies (e.g. JSON Web Tokens RFC
7519).

> Nope.  It is in use for more than 2 years.

I agree. "?l=" solves most practical problems with WKD for
service-providers in a backwards-compatible way and there is a lot of
software using WKD (GnuPG, Enigmail, OpenKeychain, Openpgpjs, Mailpile...).

If I'd be designing such a protocol now I'd probably overlay it on top
of WebFinger (RFC 7033) but currently the benefits would not
counter-balance added work for everyone involved.

Kind regards,
Wiktor

-- 
https://metacode.biz/@wiktor