[Top] [All Lists]

Re: PGP security models, was Summary of IETF LC for draft-ietf-dane-openpgpkey

2015-09-24 15:21:15

I've been up some days now with a couple of kitten naps with lots on my plate. Would you help me by providing a brief overview of the thesis, model and impl, please? It certainly sounds exciting with your modeling at the meta.


On 9/24/2015 10:05 AM, Phillip Hallam-Baker wrote:
On Thu, Sep 24, 2015 at 8:02 AM, robert <robert(_dot_)w(_dot_)withers(_at_)gmail(_dot_)com <mailto:robert(_dot_)w(_dot_)withers(_at_)gmail(_dot_)com>> wrote:

    I've sort of been following this discussion, not being too
    familiar with thinking about PGP. I did an S/MIME impl awhile back.

    I would like to propose adding 2 features:
    a. add a registry family that is self-signed and the members form
    a quorum for election and the family cert is distributed across
    many registries and there is eventual consistency.
    b. use a blockchain to make eventually consistent and authenticate
    the quorum of members of a self-signed family cert, published to
    global registry.

    I think you blockchain the self-signed, globally published family
    cert which contains quorum approval of additions and revocations
    of certs produced by this self-signed family cert with CA ability.
    I think that's secure without 3rd party CA/RevokeCertList (if
    IIIRC it's name).

    Do you think my proposal has merit?

Take a look at this, it gives a mathematical framework for that sort of approach:

The Meta Mathematical Mesh is intended to work in that way. Just finishing some code and producing initial specs.

Attachment: smime.p7s
Description: S/MIME Cryptographic Signature

<Prev in Thread] Current Thread [Next in Thread>