ietf-openpgp
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Silence is Consent Dept.

1998-06-01 11:11:05
from [Jon Callas] [Permanent Link] 
No one's commented on a number of things, which I'm interpreting as
consent. They are:

* There's no consensus on sending out diffs. I'm going to solve this by
releasing a new draft, probably today.

* My addendum to the key algorithm preferences text, that allows someone to
use IDEA in an algorithm conflict with a V3 key. I cleaned up the language
there a little more from what I sent before. The new language is:

  An implementation that is striving for backward compatibility MAY consider
  a V3 key with a V3 self-signature to be an implicit preference for IDEA,
  and no ability to do TripleDES. This is technically non-compliant, but an
  implementation MAY violate the above rule in this case only and use IDEA to
  encrypt the message, provided that the message creator is warned. Ideally,
  though, the implementation would follow the rule by actually generating two
  messages, because it is possible that the OpenPGP user's implementation
  does not have IDEA, and thus could not read the message. Consenquently, an
  implementation MAY, but SHOULD NOT use IDEA in an algorithm conflict with a
  V3 key.

* Phil's request for a reason-for-revocation subpacket addresses one of my
longstanding gripes about PGP -- that there is no way to distinguish
between a key compromise and events that are much more likely to happen,
such as getting a new ISP, deciding it's simply time for a new key, etc. My
only addition would be that when the key is superceded by a new key, that
the fingerprint of the new key be put there, which makes it a suitable
implementation of the "I-used-to-be" feature I've wanted for years. 

I'm surprised there have been no comments whatsoever on it. In spite of its
coming in at the last moment, does anyone object to my adding it in before
I send out a new draft? Removing it is easier than adding it, even.

        Jon



-----
Jon Callas                                  jon(_at_)pgp(_dot_)com
CTO, Total Network Security                 3965 Freedom Circle
Network Associates, Inc.                    Santa Clara, CA 95054
(408) 346-5860                              
Fingerprints: D1EC 3C51 FCB1 67F8 4345 4A04 7DF9 C2E6 F129 27A9 (DSS)
              665B 797F 37D1 C240 53AC 6D87 3A60 4628           (RSA)
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Version 4 keystructure, Jon Callas
Next by Date:  Re: Proposed reason-for-revocation subpacket, Jon Callas
Previous by Thread:  Re: Version 4 keystructure, Jon Callas
Next by Thread:  implicit IDEA with V3 keys (Re: Silence is Consent Dept.), Adam Back
Indexes:  [Date] [Thread] [Top] [All Lists]