Re: Identifying revoked certificates

Jon Callas <jon@callas.org> Thu, 06 September 2001 19:18 UTC

Received: from above.proper.com (above.proper.com [208.184.76.39]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id PAA06536 for <openpgp-archive@odin.ietf.org>; Thu, 6 Sep 2001 15:18:34 -0400 (EDT)
Received: by above.proper.com (8.11.6/8.11.3) id f86J6xw12087 for ietf-openpgp-bks; Thu, 6 Sep 2001 12:06:59 -0700 (PDT)
Received: from merrymeet.com (merrymeet.com [63.73.97.162]) by above.proper.com (8.11.6/8.11.3) with ESMTP id f86J6wD12083 for <ietf-openpgp@imc.org>; Thu, 6 Sep 2001 12:06:58 -0700 (PDT)
Received: from [192.168.1.180] (64.69.113.115) by merrymeet.com with ESMTP (Eudora Internet Mail Server 3.0.3); Thu, 6 Sep 2001 12:06:57 -0700
Mime-Version: 1.0
X-Sender: jon@merrymeet.com
Message-Id: <p05100325b7bd794fd6a4@[192.168.1.180]>
In-Reply-To: <010901c135ad$a7233000$fac32609@transarc.ibm.com>
References: <p05100309b7baf2e20a43@[192.168.1.180]> <010901c135ad$a7233000$fac32609@transarc.ibm.com>
Date: Thu, 6 Sep 2001 12:06:49 -0700
To: "Michael Young" <mwy-opgp97@the-youngs.org>, <ietf-openpgp@imc.org>
From: Jon Callas <jon@callas.org>
Subject: Re: Identifying revoked certificates
Content-Type: text/plain; charset="us-ascii"
Sender: owner-ietf-openpgp@mail.imc.org
Precedence: bulk
List-Archive: <http://www.imc.org/ietf-openpgp/mail-archive/>
List-Unsubscribe: <mailto:ietf-openpgp-request@imc.org?body=unsubscribe>
List-ID: <ietf-openpgp.imc.org>

Are there any comments on Michael's suggestion?

Here's a sketch design:

A signature subpacket called "revocation target" that contains a 1-octet
PKalg, a 1-octet hash algorithm, and then a hash body. It denotes that a
revocation signature is intended to revoke the signature so specified.

Comments?

	Jon