Message authorized by:
: wford(_at_)bnr(_dot_)ca@INTERNET at #EMAIL
Jim,
(2) Sec. 4.2. Description of the KEYSEL field. The current
wording says "A suggested value is to use a portion (low-order
16 bits or 32 bits) or all of the actual public key used".
Given the substantial debate on this topic, and the final clear
lack of concensus that an approach such as lower-order bits of
the public key is desirable, inclusion of the above statement
does not reflect the concensus of the discussion. Delete this
sentence.
I must confess, Warwick, that while I agree with you we're in the
minority.
Ok, so change the !@@##% specification!!!!!!!!!!!!!!!!!!!!!!
Here is suggested replacement text:
The KEYSEL field is used to distinguish between the multiple public keys
that may be associated with the name form in the STRING field. Its
value must be unique with respect to all other key selectors used with
the same name form. The KEYSEL field might be:
- the public key,
- part of the public key (low-order 16 bits or 32 bits),
- a hash of the public key,
- a local database index, or
- an X.509 v3 key identifier.
Paul