On Fri 2016-04-08 15:32:32 -0300, Jon Callas <jon(_at_)callas(_dot_)org> wrote:
One of the ideas we had a long time ago was that the "fingerprint"
actually has two fields in it. A tag and a value. I'm still fond
myself of the fingerprint that is
<algorithm-id>:<algorithm-value>
but I'm not wedded to the syntax. I like the idea; I don't care
about the syntax.
The sense i got from the group was that we wanted one (and exactly one)
fingerprint for any given key.
the proposal above means that i could compute a fingerprint for key X,
and you could compute a fingerprint for key X, and then when we go to
compare them they could be different (because one of us chose a
different algorithm id than the other). This makes fingerprint
comparison a crapshoot, or requires one side of the comparisons to
generate all possible fingerprints before they discover what the other
side has done.
--dkg
_______________________________________________
openpgp mailing list
openpgp(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/openpgp