From nobody Mon Jan 2 01:46:54 2017 Return-Path: X-Original-To: openpgp@ietf.org Delivered-To: openpgp@ietfa.amsl.com Received: from ietfa.amsl.com (localhost [IPv6:::1]) by ietfa.amsl.com (Postfix) with ESMTP id 3121F129590; Mon, 2 Jan 2017 01:46:49 -0800 (PST) MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 7bit From: internet-drafts@ietf.org To: X-Test-IDTracker: no X-IETF-IDTracker: 6.40.3 Auto-Submitted: auto-generated Precedence: bulk Message-ID: <148335040919.21889.5575808321236729044.idtracker@ietfa.amsl.com> Date: Mon, 02 Jan 2017 01:46:49 -0800 Archived-At: Cc: openpgp@ietf.org Subject: [openpgp] I-D Action: draft-ietf-openpgp-rfc4880bis-01.txt X-BeenThere: openpgp@ietf.org X-Mailman-Version: 2.1.17 List-Id: "Ongoing discussion of OpenPGP issues." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 02 Jan 2017 09:46:49 -0000 A New Internet-Draft is available from the on-line Internet-Drafts directories. This draft is a work item of the Open Specification for Pretty Good Privacy of the IETF. Title : OpenPGP Message Format Author : Werner Koch Filename : draft-ietf-openpgp-rfc4880bis-01.txt Pages : 109 Date : 2017-01-01 Abstract: { Work in progress to update the OpenPGP specification from RFC4880 } This document is maintained in order to publish all necessary information needed to develop interoperable applications based on the OpenPGP format. It is not a step-by-step cookbook for writing an application. It describes only the format and methods needed to read, check, generate, and write conforming packets crossing any network. It does not deal with storage and implementation questions. It does, however, discuss implementation issues necessary to avoid security flaws. OpenPGP software uses a combination of strong public-key and symmetric cryptography to provide security services for electronic communications and data storage. These services include confidentiality, key management, authentication, and digital signatures. This document specifies the message formats used in OpenPGP. The IETF datatracker status page for this draft is: https://datatracker.ietf.org/doc/draft-ietf-openpgp-rfc4880bis/ There's also a htmlized version available at: https://tools.ietf.org/html/draft-ietf-openpgp-rfc4880bis-01 A diff from the previous version is available at: https://www.ietf.org/rfcdiff?url2=draft-ietf-openpgp-rfc4880bis-01 Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org. Internet-Drafts are also available by anonymous FTP at: ftp://ftp.ietf.org/internet-drafts/ From nobody Mon Jan 2 02:03:12 2017 Return-Path: X-Original-To: openpgp@ietfa.amsl.com Delivered-To: openpgp@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 22E991295BE for ; Mon, 2 Jan 2017 02:03:11 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -6.9 X-Spam-Level: X-Spam-Status: No, score=-6.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_HI=-5] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id xo_qO2HRrXH8 for ; Mon, 2 Jan 2017 02:03:09 -0800 (PST) Received: from kerckhoffs.g10code.com (kerckhoffs.g10code.com [IPv6:2001:aa8:fff1:100::22]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 78E761295BC for ; Mon, 2 Jan 2017 02:03:09 -0800 (PST) Received: from uucp by kerckhoffs.g10code.com with local-rmail (Exim 4.84_2 #1 (Debian)) id 1cNzSO-0007H8-0Q for ; Mon, 02 Jan 2017 11:03:08 +0100 Received: from wk by wheatstone.g10code.de with local (Exim 4.84 #3 (Debian)) id 1cNzN6-0001pt-JM for ; Mon, 02 Jan 2017 10:57:40 +0100 From: Werner Koch To: openpgp@ietf.org References: <148335040919.21889.5575808321236729044.idtracker@ietfa.amsl.com> Organisation: The GnuPG Project X-message-flag: Mails containing HTML will not be read! Please send only plain text. OpenPGP: url=https://k.gnupg.net/80615870F5BAD690333686D0F2AD85AC1E42B367 Mail-Followup-To: openpgp@ietf.org Date: Mon, 02 Jan 2017 10:57:40 +0100 In-Reply-To: <148335040919.21889.5575808321236729044.idtracker@ietfa.amsl.com> (internet-drafts@ietf.org's message of "Mon, 02 Jan 2017 01:46:49 -0800") Message-ID: <87wpedeqcr.fsf@wheatstone.g10code.de> User-Agent: Gnus/5.13 (Gnus v5.13) MIME-Version: 1.0 Content-Type: multipart/signed; boundary="=advisors_Ft._Knox_freedom_ISEC_MILSATCOM_Exon_Shell_investigation=Er"; micalg=pgp-sha256; protocol="application/pgp-signature" Archived-At: Subject: Re: [openpgp] I-D Action: draft-ietf-openpgp-rfc4880bis-01.txt X-BeenThere: openpgp@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: "Ongoing discussion of OpenPGP issues." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 02 Jan 2017 10:03:11 -0000 --=advisors_Ft._Knox_freedom_ISEC_MILSATCOM_Exon_Shell_investigation=Er Content-Type: text/plain Content-Transfer-Encoding: quoted-printable Hi! The previous draft was about to expire and thus I published an update. The only new thing is the Issuer Fingerprint signature subpacket. Salam-Shalom, Werner =2D-=20 Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz. --=advisors_Ft._Knox_freedom_ISEC_MILSATCOM_Exon_Shell_investigation=Er Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- iHUEARYIAB0WIQTX/8BjtAoilLlm20f/gK6dHew1jQUCWGokFAAKCRD/gK6dHew1 jU8YAQCOFyab6Nsl7fdS+W7sy5hoL1nRiyDz+9cm0laK+IBCEwEAyrQB8ueEu3Kv n4KCM5C52TbpHszs9ADxfA91aM/4kwY= =5OZc -----END PGP SIGNATURE----- --=advisors_Ft._Knox_freedom_ISEC_MILSATCOM_Exon_Shell_investigation=Er-- From nobody Tue Jan 3 20:16:01 2017 Return-Path: X-Original-To: openpgp@ietfa.amsl.com Delivered-To: openpgp@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id A62AA129BAF for ; Tue, 3 Jan 2017 20:15:59 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.598 X-Spam-Level: X-Spam-Status: No, score=-2.598 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, FREEMAIL_FORGED_FROMDOMAIN=0.001, FREEMAIL_FROM=0.001, HEADER_FROM_DIFFERENT_DOMAINS=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001] autolearn=ham autolearn_force=no Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=gmail.com Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id UA1PKpQlgkcf for ; Tue, 3 Jan 2017 20:15:58 -0800 (PST) Received: from mail-io0-x22b.google.com (mail-io0-x22b.google.com [IPv6:2607:f8b0:4001:c06::22b]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D55D5129BA9 for ; Tue, 3 Jan 2017 20:15:57 -0800 (PST) Received: by mail-io0-x22b.google.com with SMTP id p42so446473233ioo.1 for ; Tue, 03 Jan 2017 20:15:57 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=mime-version:sender:in-reply-to:references:from:date:message-id :subject:to; bh=7p1tOLV9yGPucR88lxFxTF5QV5sjPJaRbnCvt5ng6J8=; b=Vpu6pbXu5v8PZ7a0z41atrQcd8jDd8djcKC5mlqL/inR/I1PCyCjqrbyxxs/xjbhnk wCbSjvary30sTGNSIlDppPhlgla+xPquYmxavVmNXzzRwSmEkNqbz8gkC8FAU1ArL4bu cM20lSnUFg+eI25yh36sTK3JxitIUHShT0bsYUpXOstf9ymkvUZGLZCCQhgmCcouXCqW sdJX1HJjPuZMUBkGtxXnHnFUNxiuQJ1CR4aeTMDSDx/vzX1yqnARr5LnsEwRsox1OBR3 D/3OGJKRmIIgmsHq65Xcr3xf/ITQ0hOJ8dGgY4vXvj9o1R22VOUXkVG7WVCkFLgfWsMl FL5g== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:sender:in-reply-to:references:from :date:message-id:subject:to; bh=7p1tOLV9yGPucR88lxFxTF5QV5sjPJaRbnCvt5ng6J8=; b=PI1vulM4KEJoe1BSTEOzaRullrlvNgpUvLCIjjMHuQRxK7tEnBBZvNbzDIRsoeZJiG sqxTQmf1kbZtcTOGuPmGhthAaq3WaniqMBH6AKIsYdmbBejAMStOF2Je1h3kPB3Iwi54 Kg3Ieg3Z02OmK5XW7jo9RU1/BOHjPOQNx6dyppkw76VlSfpJatqV7IipNx1OTqgIAmSh +7+kdUcIBzJZpXWhUTu2wbWGTXvUrgG5CVEQQGcS00RNGpXS5tulvbx84Oh93n9WupCj s+WVEuO3fj2Q9euI/oF8PBSZqiLLcryTrqhBeGGnIXerSWPlkpVitcIBpIIGs4N8zBRD pZcQ== X-Gm-Message-State: AIkVDXLQS8KRa+7xylafdEwY/OHHy8o1r2fIgIj+35oispy2tkf1O2DmENaqxDmMhXhSrTCXBFrPtj69YMKsAg== X-Received: by 10.107.40.142 with SMTP id o136mr50385000ioo.1.1483503356954; Tue, 03 Jan 2017 20:15:56 -0800 (PST) MIME-Version: 1.0 Sender: barryleiba.mailing.lists@gmail.com Received: by 10.107.156.208 with HTTP; Tue, 3 Jan 2017 20:15:56 -0800 (PST) In-Reply-To: <87wpedeqcr.fsf@wheatstone.g10code.de> References: <148335040919.21889.5575808321236729044.idtracker@ietfa.amsl.com> <87wpedeqcr.fsf@wheatstone.g10code.de> From: Barry Leiba Date: Wed, 4 Jan 2017 12:15:56 +0800 X-Google-Sender-Auth: GYzA7Hpr8mroNuBgQkT0QtN_u14 Message-ID: To: IETF OpenPGP Content-Type: text/plain; charset=UTF-8 Archived-At: Subject: Re: [openpgp] I-D Action: draft-ietf-openpgp-rfc4880bis-01.txt X-BeenThere: openpgp@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: "Ongoing discussion of OpenPGP issues." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 04 Jan 2017 04:15:59 -0000 Are there open issues that need to be addressed? Or do you think this version is ready? Barry, chair On Mon, Jan 2, 2017 at 5:57 PM, Werner Koch wrote: > Hi! > > The previous draft was about to expire and thus I published an update. > The only new thing is the Issuer Fingerprint signature subpacket. > > > Salam-Shalom, > > Werner > > -- > Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz. > > _______________________________________________ > openpgp mailing list > openpgp@ietf.org > https://www.ietf.org/mailman/listinfo/openpgp > From nobody Wed Jan 4 08:02:18 2017 Return-Path: X-Original-To: openpgp@ietfa.amsl.com Delivered-To: openpgp@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E841D1295D1 for ; Wed, 4 Jan 2017 08:02:16 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -6.9 X-Spam-Level: X-Spam-Status: No, score=-6.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_HI=-5] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id lH4InAFnO8HZ for ; Wed, 4 Jan 2017 08:02:15 -0800 (PST) Received: from kerckhoffs.g10code.com (kerckhoffs.g10code.com [IPv6:2001:aa8:fff1:100::22]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 1889712945B for ; Wed, 4 Jan 2017 08:02:15 -0800 (PST) Received: from uucp by kerckhoffs.g10code.com with local-rmail (Exim 4.84_2 #1 (Debian)) id 1cOo0z-0007bk-FN for ; Wed, 04 Jan 2017 17:02:13 +0100 Received: from wk by wheatstone.g10code.de with local (Exim 4.84 #3 (Debian)) id 1cOnxs-0006j7-DA; Wed, 04 Jan 2017 16:59:00 +0100 From: Werner Koch To: Barry Leiba References: <148335040919.21889.5575808321236729044.idtracker@ietfa.amsl.com> <87wpedeqcr.fsf@wheatstone.g10code.de> Organisation: The GnuPG Project X-message-flag: Mails containing HTML will not be read! Please send only plain text. OpenPGP: url=https://k.gnupg.net/80615870F5BAD690333686D0F2AD85AC1E42B367 Mail-Followup-To: Barry Leiba , IETF OpenPGP Date: Wed, 04 Jan 2017 16:58:59 +0100 In-Reply-To: (Barry Leiba's message of "Wed, 4 Jan 2017 12:15:56 +0800") Message-ID: <877f6addfg.fsf@wheatstone.g10code.de> User-Agent: Gnus/5.13 (Gnus v5.13) MIME-Version: 1.0 Content-Type: multipart/signed; boundary="=Sears_Tower_Downing_Street_Albania_Mena_MD4_Exon_Shell_Uzi_ANDVT_Bus"; micalg=pgp-sha256; protocol="application/pgp-signature" Archived-At: Cc: IETF OpenPGP Subject: Re: [openpgp] I-D Action: draft-ietf-openpgp-rfc4880bis-01.txt X-BeenThere: openpgp@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: "Ongoing discussion of OpenPGP issues." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 04 Jan 2017 16:02:17 -0000 --=Sears_Tower_Downing_Street_Albania_Mena_MD4_Exon_Shell_Uzi_ANDVT_Bus Content-Type: text/plain Content-Transfer-Encoding: quoted-printable On Wed, 4 Jan 2017 05:15, barryleiba@computer.org said: > Are there open issues that need to be addressed? Or do you think this > version is ready? No, there are lots of open issues :-(. I published the I-D only to avoid its expiration. Salam-Shalom, Werner =2D-=20 Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz. --=Sears_Tower_Downing_Street_Albania_Mena_MD4_Exon_Shell_Uzi_ANDVT_Bus Content-Type: application/pgp-signature -----BEGIN PGP SIGNATURE----- iHUEARYIAB0WIQTX/8BjtAoilLlm20f/gK6dHew1jQUCWG0bwwAKCRD/gK6dHew1 jVmzAQDYQlp0e3FDBeDixq06hE6CYRUMOQn5jG3nnLzCC+U6iQD8Djb2IviYiUKi 64u3Y8tndHmgsy0mztw7egqFW42SeA8= =nfTR -----END PGP SIGNATURE----- --=Sears_Tower_Downing_Street_Albania_Mena_MD4_Exon_Shell_Uzi_ANDVT_Bus-- From nobody Wed Jan 11 08:09:00 2017 Return-Path: X-Original-To: openpgp@ietfa.amsl.com Delivered-To: openpgp@ietfa.amsl.com Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id F0D8A129EE2 for ; Wed, 11 Jan 2017 06:37:08 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -5.089 X-Spam-Level: X-Spam-Status: No, score=-5.089 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_NONE=-0.0001, RP_MATCHES_RCVD=-3.199, T_TVD_MIME_NO_HEADERS=0.01] autolearn=ham autolearn_force=no Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id n9VQAFtUM4cD for ; Wed, 11 Jan 2017 06:37:07 -0800 (PST) Received: from jupiter.mumble.net (jupiter.mumble.net [74.50.56.165]) by ietfa.amsl.com (Postfix) with ESMTP id 0D563129CA4 for ; Wed, 11 Jan 2017 06:37:06 -0800 (PST) Received: by jupiter.mumble.net (Postfix, from userid 1014) id 593E6603C5; Wed, 11 Jan 2017 14:37:03 +0000 (UTC) From: Taylor R Campbell To: openpgp@ietf.org Date: Wed, 11 Jan 2017 14:37:05 +0000 Sender: Taylor R Campbell MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="=_sqOT/cHNbbO44ShoBBoAK1eyhMN6BXt+" Content-Transfer-Encoding: 7bit Message-Id: <20170111143703.593E6603C5@jupiter.mumble.net> Archived-At: X-Mailman-Approved-At: Wed, 11 Jan 2017 08:08:58 -0800 Subject: [openpgp] patch for EdDSA key packet formats X-BeenThere: openpgp@ietf.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: "Ongoing discussion of OpenPGP issues." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 11 Jan 2017 14:37:09 -0000 This is a multi-part message in MIME format. --=_sqOT/cHNbbO44ShoBBoAK1eyhMN6BXt+ The current text describing the EdDSA secret key packet format is wrong (it is not used as a scalar at all), and the text describing the public key packet format is confusing (can't find the notation Q anywhere, and it matches neither the EdDSA papers nor the CFRG EdDSA draft). The attached patch to rfc4880bis.git fixes both. --=_sqOT/cHNbbO44ShoBBoAK1eyhMN6BXt+ Content-Type: text/plain; charset="ISO-8859-1"; name="rfc4880bis-eddsa" Content-Transfer-Encoding: quoted-printable Content-Disposition: attachment; filename="rfc4880bis-eddsa.patch" >From 248eba683f5c52b73b79c927dbef818f5ceb343c Mon Sep 17 00:00:00 2001 From: Taylor R Campbell Date: Wed, 11 Jan 2017 14:21:13 +0000 Subject: [PATCH] Fix EdDSA secret key packet format with reference to CFRG notation. What is stored is *not* a scalar; it is a b-bit secret input to a 2b-bit hash function that expands it into (a) the b-bit secret scalar a, giving the public key A =3D a B, where B is the standard base point; and (b) the b-bit nonce PRF key. While here, clarify EdDSA public key packet format with reference to CFRG notation too. --- middle.mkd | 9 +++++---- 1 file changed, 5 insertions(+), 4 deletions(-) diff --git a/middle.mkd b/middle.mkd index 5182c7d..905bde1 100644 --- a/middle.mkd +++ b/middle.mkd @@ -1936,8 +1936,9 @@ A version 4 packet contains: - the octets representing a curve OID, defined in section NN{FIXME}; =20 - - a MPI of an EC point representing a public key Q as described - under EdDSA Point Format below. + - a MPI, encoded as described under EdDSA Point Format, of an EC + point A, in the notation of [](#I-D.irtf-cfrg-eddsa), + Section 3.2 "Keys". =20 Algorithm-Specific Fields for ECDH keys: =20 @@ -2034,8 +2035,8 @@ The packet contains: =20 Algorithm-Specific Fields for EdDSA keys: =20 - - MPI of an integer representing the secret key, which is a - scalar of the public EC point. + - an opaque octet string k, in the notation of + [](#I-D.irtf-cfrg-eddsa), Section 3.2 "Keys". =20 =20 =20 --=20 2.10.2 --=_sqOT/cHNbbO44ShoBBoAK1eyhMN6BXt+--