On Wed 2019-07-31 16:34:44 -0400, Daniel Kahn Gillmor wrote:
This patch to the spec deprecates the "revocation key" subpacket and
replaces it with a "designated revoker" subpacket that includes the
full key, rather than the fingerprint.
[...]
@@ -1039,7 +1039,7 @@ The value of the subpacket type octet may be:
9 Key Expiration Time
10 Placeholder for backward compatibility
11 Preferred Symmetric Algorithms
- 12 Revocation Key
+ 12 Revocation Key (deprecated)
13 to 15 Reserved
16 Issuer
17 to 19 Reserved
@@ -1058,6 +1058,7 @@ The value of the subpacket type octet may be:
32 Embedded Signature
33 Issuer Fingerprint
34 Preferred AEAD Algorithms
+ 35 Designated Revoker
100 to 110 Private or experimental
An implementation SHOULD ignore any subpacket of a type that it does
I've updated the above to use subpacket ID 36 for "Designated Revoker"
instead of 35, since 35 is already in use in the wild by the "Intended
Recipient Fingerprint" subpacket in at least two implementations i'm
aware of. (see message-id: 20180305231951.GA21944@calamity from
2018-03-05 on this mailing list, and subsequent discussion)
I've opened https://gitlab.com/openpgp-wg/rfc4880bis/merge_requests/19
to track the "Intended Recipient Fingerprint" subpacket.
--dkg
signature.asc
Description: PGP signature
_______________________________________________
openpgp mailing list
openpgp(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/openpgp