On Wed 2019-07-31 16:34:44 -0400, Daniel Kahn Gillmor wrote:
The "revocation key" subpacket is problematic. It is the the most
fragile piece of the specification wrt the fingerprint (collisions
against a fingerprint can create surprising revocation effects). And
it is potentially difficult to rely on for clients which might not be
able to find the revoking key (for example, if keyservers are
unavailable).
It is also not currently widely used.
This patch to the spec deprecates the "revocation key" subpacket and
replaces it with a "designated revoker" subpacket that includes the
full key, rather than the fingerprint.
this is also at https://gitlab.com/openpgp-wg/rfc4880bis/merge_requests/18
--dkg
signature.asc
Description: PGP signature
_______________________________________________
openpgp mailing list
openpgp(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/openpgp