On 2/06/2015 13:13 pm, Werner Koch wrote:
On Tue, 2 Jun 2015 12:43, iang(_at_)iang(_dot_)org said:
I think the reality of OpenPGP's lifecycle is that we are going to be
dealing with legacy implementations and algorithms anyway, and just
I don't think that "legacy" is an appropriate term here. In contrast to
many other protocols (e.g. IP) we need to care about data at rest.
There are huge amounts of encrypted or signed data on disks and tapes
which eventually need to be decrypted.
Good point.
It might be good to think of OpenPGP data like the tar format and not
like http/smtp/xmpp.
Which really does put the point on cipher suite choices. We should be
thinking in terms of decades ahead.
I wonder if implementations could add a re-encrypt mode to bring old
archives into the new formats?
iang
_______________________________________________
openpgp mailing list
openpgp(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/openpgp