subkey signatures

ietf-openpgp

subkey signatures

1999-03-24 11:30:58

According to RFC 2440, if a four-octet length Public Subkey Packet
is bound to a key, the signature is computed over a packet with a
two-octet length field.

In violation of the RFC, both PGP and GnuPG reject such signatures.

(Section 5.2.4: "When a signature is made over a key, the hash data
starts with the octet 0x99, followed by a two-octet length of the key,
and then body of the key packet. (Note that this is an old-style
packet header for a key packet with two-octet length.) A subkey
signature (type 0x18) then hashes the subkey, using the same format as
the main key.").

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Re: key flags -- what do they mean?, (continued) Re: key flags -- what do they mean?, William H. Geiger III Re: key flags -- what do they mean?, Adam Back Re: key flags -- what do they mean?, Jon Callas Re: key flags -- what do they mean?, Thomas Roessler Re: key flags -- what do they mean?, Jon Callas Re: key flags -- what do they mean?, Adam Back Re: key flags -- what do they mean?, Jon Callas rfc2440, Ulf Möller Re: rfc2440, Jon Callas DSA signatures, Ulf Möller subkey signatures, Ulf Möller <= Re: key flags -- what do they mean?, Bill Frantz Re: key flags -- what do they mean?, Lutz Donnerhacke Re: key flags -- what do they mean?, David P. Kemp

Previous by Date:	DSA signatures, Ulf Möller
Next by Date:	Re: subkey signatures, hal
Previous by Thread:	DSA signatures, Ulf Möller
Next by Thread:	Re: key flags -- what do they mean?, Bill Frantz
Indexes:	[Date] [Thread] [Top] [All Lists]