On 16 Apr 2022, at 14:39, Daniel Kahn Gillmor
<dkg(_at_)fifthhorseman(_dot_)net> wrote:
I agree with Andrew that one straightforward way to enforce the use of a
hybrid scheme would be with a dedicated public key ID. The only risk
there is that we might then end up allocating some kind of combinatorial
explosion of codepoints in the pubkey id table if there are multiple
schemes of each type that might want to hybridize.
I was thinking more along the lines of having one codepoint for “hybrid
encryption scheme” and put all other details in the contents. This would be
similar to your subpacket idea, except that both/all of the atomic keys would
be contained in subpackets, and the order of application of the atomic schemes
would be reflected in the subpacket order.
A
_______________________________________________
openpgp mailing list
openpgp(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/openpgp