-----BEGIN PGP SIGNED MESSAGE-----
"Werner Koch" <wk(_at_)gnupg(_dot_)org> wrote:
I don't see a reason for the revocation target specifiers. The only
sound handling of self-signature revocations (and that's what we are
talking about) is to use the latest valid self-signature, be it a
If "most recent prevails" is the only sound handling, and you
want senders to depend on that, then the specification should say so.
There was some resistance to this, though.
Are multiple certifications illegal? (If so, the spec should
recommend against doing so.) I can see a couple of reasons
that I might want to sign the same key/name pair multiple
times:
different types (generic, persona, etc.), possibly with
a specific lifetime associated with each;
different notation data;
different trust for separate domains ("regular expressions").
Do you not believe in any of these uses?
* Sequence of packets messed up.
As it stands, the ordering section doesn't say where to put
self-signatures, and it doesn't specify ordering for certificate
revocations, so there is no way for things to be "messed up" within a
given context. [If a revocation is in the wrong context (e.g., for
userId "joe" instead of userId "bob"), then reordering is not
particularly easy.] Jon Callas objected to adding an ordering
suggestion.
-----BEGIN PGP SIGNATURE-----
Version: PGP Personal Privacy 6.5.3
iQEVAwUBO5k71mNDnIII+QUHAQG0IQgAkbnCL9CAiO3+j0NlptEBCBn48YGyC82K
UCqj2v/1dPEhGB+sitCEb8pvWJ4lc37YDW81krBbkhIhHCOBWOxM59vIFSGiejMA
f76TwDlmE7eXYOhTpePZROm3/ABsMjslX2nLCAKq1g2N4DUuFmrS11pVMySN950f
bAoDAkP9K0tR78QljbxOQLP73hT5NfLcZHLH8mmNa6NPRd9GHY/Df5Jg9e5/aJ35
f3HBi+s/60caB7PflpXDBT9uFJKSzWlXlmjzCxG3b9exHPYpLF9h4rjxkwwy4Hrj
NR2EIftGlenCSnZ4kNkcG+AAb5m38IfE6Av4Wswgf7sDt4e6fYYPHA==
=85f5
-----END PGP SIGNATURE-----