ietf-openpgp
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [openpgp] ways forward wrt IETF wg - please try answer by Apr 8th

2015-04-07 04:10:13
from [Kristian Fiskerstrand] [Permanent Link] 
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

On 04/01/2015 10:27 PM, Daniel Kahn Gillmor wrote:

On Wed 2015-04-01 14:57:49 -0400, Stephen Farrell wrote:

option 2: do maintenance work on rfc4880 - produce a 4880bis with
better crypto options at least, and debate any further detailed
changes during chartering - the charter will contain a list of
specific things to do and other things will be out of scope (for
now)


I think i favor this approach, ideally *without* adding trust model
work into the mix.

Trying to explicitly declare a standardized trust model would be a 
mistake for the WG.  it's a huge rat hole, and a "one trust model
fits all" approach is probably illegitimate at some deeper level,
since different people have different adversaries.



I agree with DKG on both favoring Option 2 and avoiding definition of
trust model as part of this update; if anything this can be provided
as an informative rfc outside of the scope of this WG, it is only
relevant to the extent we would need additional mechanisms to
implement them, and the current mechanism provide good flexibility for
various implementations already.

DKGs list of things to look into seems like a good starting point
(although I haven't reviewed it in detail), I also seem to recall
discussion about whether a hard expiry should be introduced that
should be possible within option 2 if we want to.


whoami:
Running https://sks-keyservers.net and one of the SKS developers.

- -- 
- ----------------------------
Kristian Fiskerstrand
Blog: http://blog.sumptuouscapital.com
Twitter: @krifisk
- ----------------------------
Public OpenPGP key 0xE3EDFAE3 at hkp://pool.sks-keyservers.net
fpr:94CB AFDD 3034 5109 5618 35AA 0B7F 8B60 E3ED FAE3
- ----------------------------
"Statistics are like a bikini. What they reveal is suggestive, but
what they conceal is vital."
(Aaron Levenstein)
-----BEGIN PGP SIGNATURE-----

iQEcBAEBCgAGBQJVI57iAAoJEP7VAChXwav69DQIALEm1b3LV/P9xMltRPaPE6O4
augOw9kV2a1r11za6nAPqUxKTnfkZZqGU/MFwvScIO1rtoy8VQnrYIVJp5WRP6iK
QRuWoq0JFaIXgwHZC5oYiNSOHiT03Qx67dy1qCvL0Cp1j5OxkautmUImnrsnZmPH
cwgisGoLJXkITp+MJbLMzOctc2rbgLhJ38gsToV2+Zu679TVv8WmUw25Oc0yPyLO
O/9bUqUWbZdof9rX7uGf8Zv665d3c3r+5Dlwkrqnduy61lo/fwtQ65IvVq2tKU1F
D8t0RBVnjz1J9esNfTDyvEj7Vlo3Hpz2Lowb8bIv8GxWWmR1TQEyNgZaLxUE3AY=
=cQG/
-----END PGP SIGNATURE-----

_______________________________________________
openpgp mailing list
openpgp(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/openpgp
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [openpgp] ways forward wrt IETF wg - please try answer by Apr 8th, DataPacRat
Next by Date:  [openpgp] MIME signature impact, Phillip Hallam-Baker
Previous by Thread:  Re: [openpgp] ways forward wrt IETF wg - please try answer by Apr 8th, Tom Ritter
Next by Thread:  Re: [openpgp] ways forward wrt IETF wg - please try answer by Apr 8th, Wyllys Ingersoll
Indexes:  [Date] [Thread] [Top] [All Lists]