Re: V5 key packet format requirements

ietf-openpgp

Re: V5 key packet format requirements

2006-02-03 05:47:54


On Fri, Feb 03, 2006 at 11:53:33AM +0000, Ben Laurie wrote:

2. Scrap encrypted private keys. We already have a symmetrically
encrypted container format with sufficient integrity protection, so
there is no reason to maintain another one. Just put the
unencrypted private key packet into that container, if you need
encryption. This will reduce the number of things to worry about
and make the security of OpenPGP easier to assess and maintain.


Yes, please!


What if you want different password on different keys?

(Think eg long term signing key vs short term signing key -- no point
having separate signing keys unless have possibility to use different
password.)

Adam

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
V5 key packet format requirements, Daniel A. Nagy Re: V5 key packet format requirements, Ben Laurie Re: V5 key packet format requirements, Adam Back <= Re: V5 key packet format requirements, Daniel A. Nagy Re: V5 key packet format requirements, Ben Laurie Re: V5 key packet format requirements, Ian G Re: V5 key packet format requirements, Konrad Rosenbaum Re: V5 key packet format requirements, Daniel A. Nagy Re: V5 key packet format requirements, Edwin Woudt Re: V5 key packet format requirements, Daniel A. Nagy Re: V5 key packet format requirements, Edwin Woudt Re: V5 key packet format requirements, Jon Callas

Previous by Date:	Re: V5 key packet format requirements, Daniel A. Nagy
Next by Date:	Re: V5 key packet format requirements, Ben Laurie
Previous by Thread:	Re: V5 key packet format requirements, Ben Laurie
Next by Thread:	Re: V5 key packet format requirements, Daniel A. Nagy
Indexes:	[Date] [Thread] [Top] [All Lists]