IETF Logo Mail Archive

Re: Signature calculation language

David Shaw <dshaw@jabberwocky.com> Wed, 12 October 2005 03:01 UTC

Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1EPWs1-0002v1-T2 for openpgp-archive@megatron.ietf.org; Tue, 11 Oct 2005 23:01:34 -0400
Received: from above.proper.com (above.proper.com [208.184.76.39]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id XAA21740 for <openpgp-archive@lists.ietf.org>; Tue, 11 Oct 2005 23:01:30 -0400 (EDT)
Received: from above.proper.com (localhost.vpnc.org [127.0.0.1]) by above.proper.com (8.12.11/8.12.9) with ESMTP id j9C2pGPR065818; Tue, 11 Oct 2005 19:51:16 -0700 (PDT) (envelope-from owner-ietf-openpgp@mail.imc.org)
Received: (from majordom@localhost) by above.proper.com (8.12.11/8.12.9/Submit) id j9C2pGXa065817; Tue, 11 Oct 2005 19:51:16 -0700 (PDT)
X-Authentication-Warning: above.proper.com: majordom set sender to owner-ietf-openpgp@mail.imc.org using -f
Received: from sccrmhc11.comcast.net (sccrmhc11.comcast.net [204.127.202.55]) by above.proper.com (8.12.11/8.12.9) with ESMTP id j9C2pE8h065806 for <ietf-openpgp@imc.org>; Tue, 11 Oct 2005 19:51:15 -0700 (PDT) (envelope-from dshaw@jabberwocky.com)
Received: from walrus.hsd1.ma.comcast.net ([24.60.132.70]) by comcast.net (sccrmhc11) with ESMTP id <20051012025037011009ku5de>; Wed, 12 Oct 2005 02:50:37 +0000
Received: from grover.jabberwocky.com (grover.jabberwocky.com [172.24.84.28]) by walrus.hsd1.ma.comcast.net (8.12.8/8.12.8) with ESMTP id j9C2oh0m005766 for <ietf-openpgp@imc.org>; Tue, 11 Oct 2005 22:50:43 -0400
Received: from grover.jabberwocky.com (grover.jabberwocky.com [127.0.0.1]) by grover.jabberwocky.com (8.13.1/8.13.1) with ESMTP id j9C2oY08014750 for <ietf-openpgp@imc.org>; Tue, 11 Oct 2005 22:50:34 -0400
Received: (from dshaw@localhost) by grover.jabberwocky.com (8.13.1/8.13.1/Submit) id j9C2oYwG014749 for ietf-openpgp@imc.org; Tue, 11 Oct 2005 22:50:34 -0400
Date: Tue, 11 Oct 2005 22:50:34 -0400
From: David Shaw <dshaw@jabberwocky.com>
To: ietf-openpgp@imc.org
Subject: Re: Signature calculation language
Message-ID: <20051012025034.GA5034@jabberwocky.com>
Mail-Followup-To: ietf-openpgp@imc.org
References: <20051011222500.0352B57EF9@finney.org>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <20051011222500.0352B57EF9@finney.org>
OpenPGP: id=99242560; url=http://www.jabberwocky.com/david/keys.asc
User-Agent: Mutt/1.5.8i
Sender: owner-ietf-openpgp@mail.imc.org
Precedence: bulk
List-Archive: <http://www.imc.org/ietf-openpgp/mail-archive/>
List-Unsubscribe: <mailto:ietf-openpgp-request@imc.org?body=unsubscribe>
List-ID: <ietf-openpgp.imc.org>

On Tue, Oct 11, 2005 at 03:25:00PM -0700, "Hal Finney" wrote:

> So it does seem like it must be a MUST in order to be an effective
> deterrent.
> 
> One possible problem is if there is any substantial set of signing subkeys
> in use that don't have the 0x19 signature.  Signatures issued by those
> keys might become invalid.  I don't think we have any from pgp.com,
> we did not previously support signing subkeys.

GPG supports signing subkeys, and there are a number of them in use.
(A number, it should be said though, that is utterly dwarfed by the
number of people using their primary key as their signing key.)

I am concerned about the users of signing subkeys, so I have a
transition planned for GPG.  GPG has offered 0x19 backsigs as a
build-time option for a while now.  As of the next release (1.4.3),
backsigs are on by default so all new signing subkeys have them.  At
some point in the future (after more subkeys get backsigs), GPG will
start complaining if it does not see a backsig.  At some point even
further, GPG will start treating signatures issued by a signing subkey
without a backsig as invalid, but there will be a way to tell GPG to
ignore the missing backsigs for backwards compatibility.

I think such a transition in GPG and other programs that support
signing subkeys is a reasonable solution for the existing signing
subkeys out there, and it shouldn't impact doing the right thing in
the standard for future use.

I support making 0x19 backsigs a MUST.

David

v2.23.0 | Report a Bug | By Email