ietf-openpgp
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [openpgp] OpenPGP extension to allow for Primary Encrypt-only Keys

2014-09-01 08:13:50
from [Derek Atkins] [Permanent Link] 
Hi,

On Mon, September 1, 2014 8:15 am, Werner Koch wrote:

On Thu, 28 Aug 2014 22:09, derek(_at_)ihtfp(_dot_)com said:


Another thing it does is add a new "User ID Attribute" type to the User
Attributes list so that you could use a single signature to certify both
an "ID" and an image together.


Is the intention that a user ID attribute shall in general be handled
the same way as a user id packet?  This would raise the question whether
a certification is based on only or all the user id, the image, or any
future sub packets.  Given that you assume certain constrains on an
implementation, the intended use would require only a self-signature.
Can you clarify that in the draft?


RFC4880 already says that that the User Attribute Packet should be treated
the same as the User ID Packet and can be used in all the places that a
User ID Packet can be used.  I'm just trying to add a place where you
could insert an actual "User ID" into the attribute packet so you don't
need two signatures to have both an ID and Image (and other attributes). 
I don't think there is any confusion; a signature over the User Attribute
Packet would be a signatue over the whole packet (meaning all subpackets
in the attribute).

However I can make this more clear.


  4.4.  The 'vers' Notation

   This notation defines the product version number (which could be a
   release number, year, or some other identifier to differentiate
   different versions of the same make/model).  It is a free form
   string.

I would suggest to use a different name.  "vers" might be confused with
the protocol or key version, what about "mver", "pver, or "pvers"?


I'm not sure how it would get confused, but I'm not tied to "vers".  I'll
change it to pver.  I'm also adding a bunch more.  I'll submit a new draft
tomorrow; today is a holiday to technically I'm not working ;)

Thank you for your review sand comments.



Shalom-Salam,

   Werner


-derek


--
Die Gedanken sind frei.  Ausnahmen regelt ein Bundesgesetz.





-- 
       Derek Atkins                 617-623-3745
       derek(_at_)ihtfp(_dot_)com             www.ihtfp.com
       Computer and Internet Security Consultant

_______________________________________________
openpgp mailing list
openpgp(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/openpgp
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [openpgp] OpenPGP extension to allow for Primary Encrypt-only Keys, Werner Koch
Next by Date:  Re: [openpgp] OpenPGP extension to allow for Primary Encrypt-only Keys, Werner Koch
Previous by Thread:  Re: [openpgp] OpenPGP extension to allow for Primary Encrypt-only Keys, Werner Koch
Next by Thread:  Re: [openpgp] OpenPGP extension to allow for Primary Encrypt-only Keys, Werner Koch
Indexes:  [Date] [Thread] [Top] [All Lists]