[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Question regarding 2440:5.2.3.16

To: ietf-openpgp@xxxxxxx
Subject: Question regarding 2440:5.2.3.16
From: "L. Sassaman" <rabbi@xxxxxxxxxxx>
Date: Fri, 7 Jul 2000 16:37:11 -0700 (PDT)
Cc: wk@xxxxxxxxx
List-archive: <http://www.imc.org/ietf-openpgp/mail-archive/>
List-id: <ietf-openpgp.imc.org>
List-unsubscribe: <mailto:ietf-openpgp-request@imc.org?body=unsubscribe>
Sender: owner-ietf-openpgp@xxxxxxxxxxxx

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Would anyone like to make a suggestion for a standard HTTP mechanism for
doing signed key adds to keyservers?

In order for keyservers to take advantage of 2440:5.2.3.16, there must be
a way to authenticate the user submitting the add as being the owner of
the key.

This can be done quite easily using an LDAPS connection, but since most
keyservers do not support such a connection, and some clients do not
either, I think there should be a standard data format for submitting
signed add requests to "HKP" keyservers.

Werner Koch and I have been discussing this, and he suggests that we put
it into a clear-text signature packet. Would that be suitable? 


- --Len.

__

L. Sassaman

System Administrator                |  
Technology Consultant               |  "Credo quia absurdum."
icq.. 10735603                      |  
pgp.. finger://ns.quickie.net/rabbi |          --Tertullian 








-----BEGIN PGP SIGNATURE-----
Comment: OpenPGP Encrypted Email Preferred.

iD8DBQE5ZmmuPYrxsgmsCmoRAli4AJ4xBu8Vfv3iUVokLY9eJbAHedgS1QCeNTIN
NHgFwERh+a6UUZ5V1xRuwes=
=NNry
-----END PGP SIGNATURE-----

Follow-Ups:
- Re: Question regarding 2440:5.2.3.16
  - From: sen_ml

Prev by Date: Re: Forward secrecy
Next by Date: 5.1 Clarification re padding
Previous by thread: Forward secrecy
Next by thread: Re: Question regarding 2440:5.2.3.16
Index(es):
- Date
- Thread