Re: questions: packet tag or content tag (4.3), what is placed in hashed

ietf-openpgp

Re: questions: packet tag or content tag (4.3), what is placed in hashed subpacket field (5.2.3), critical bit (5.2.3.1), default user id (5.2.3.3)

2000-05-22 08:28:27

from [hal]

so is the signing key id the only subpacket that is allowed to go in
the unhashed area?


No, anything which might reasonably be considered to be "advisory"
and not security critical could go there.  For example the URL where
the cert can be found.  I don't know if there is an exhaustive list.
The point is that the software needs to be aware that material in the
unhashed region is not authenticated and could have been tampered with.

also, for a given subpacket type, can instances of
that subpacket appear in either the hashed subpacket field or the
unhashed subpacket field, or is it a mutually exclusive situation?


I don't see any problem in allowing that.

Hal

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Re: questions: packet tag or content tag (4.3), what is placed in hashed subpacket field (5.2.3), critical bit (5.2.3.1), default user id (5.2.3.3), hal Re: questions: packet tag or content tag (4.3), what is placed in hashed subpacket field (5.2.3), critical bit (5.2.3.1), default user id (5.2.3.3), hal <= Re: questions: packet tag or content tag (4.3), what is placed in hashed subpacket field (5.2.3), critical bit (5.2.3.1, William H. Geiger III

Previous by Date:	Re: PGP/MIME: Time for last call?, Thomas Roessler
Next by Date:	Re: minor typos/points?, hal
Previous by Thread:	Re: questions: packet tag or content tag (4.3), what is placed in hashed subpacket field (5.2.3), critical bit (5.2.3.1), default user id (5.2.3.3), hal
Next by Thread:	Re: questions: packet tag or content tag (4.3), what is placed in hashed subpacket field (5.2.3), critical bit (5.2.3.1, William H. Geiger III
Indexes:	[Date] [Thread] [Top] [All Lists]