tzeruch wrote:
Generally, I think it would make sense to promote RSA keys to V4 format
(and assuming a V4 keyserver), but be able to export them in V3 format
when necessary. The keyserver could find the key given either the V3 or
V4 keyid.
Looking forward to a "semantics" document (if it comes to that) to
supplement the formats document, I'm uncomfortable making an explicit
linkage between the V3 and V4 format RSA keys unless we have a good
model of what signatures mean in this case. If a signer signs one or
the other format, would you assume that signature has the same meaning
for the other format? Would you have the Web of trust form the union
of signatures on the two styles of key? I suppose it makes sense, but
I'd want to think through the implications further. Certainly it would
be sufficient to have each of your signers sign both formats, but it
seems overly tricky to have to check a signature by failing, then
converting the key to the other format and trying again.
Jim Gillogly