On Mon, 2015-04-20 at 11:17 -0400, Derek Atkins wrote:
* what material gets digested; at a minmum, this is:
- the algorithm for the key (incl. any parameters)
- public key values (mpi's, bitstrings)
it's not clear to me that there is any advantage to adding
anything else here.
I still believe that the creation time (and key expiration time, if it
exists) should be included.
I think the same accounts for the key usage flags. Or actually, we
should perhaps make primary keys to be generally certifying-only keys.
And specifying a expiration time (even if it's 0) should be mandatory.
Cheers.
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________
openpgp mailing list
openpgp(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/openpgp