On 8/5/2019 at 1:45 PM, "Werner Koch" <wk(_at_)gnupg(_dot_)org> wrote:
I view this as problematic in the light of our preparations to
allow for
larger key material. With PQC we may need megabyte large keys and
then
including an entire key would double the size of a keyblock.
=====
There is a workaround which could avoid this;
Generating a Revocation Certificate for the key, and keeping it in a separate
place from the keyring,
and also sending it to whomever the user wants to be the 'designated revoker',
(which could change from time to time, without having to update the keyblock
itself).
If this seems reasonable, then maybe consider it as a 'suggestion/comment' to
the rfc section dealing with revocation.
vedaal
_______________________________________________
openpgp mailing list
openpgp(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/openpgp