[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

PoP & Signer's User ID subpacket?

To: ietf-openpgp@xxxxxxx
Subject: PoP & Signer's User ID subpacket?
From: Trevor Perrin <trevp@xxxxxxxxx>
Date: Mon, 16 Jun 2003 14:34:26 -0700
List-archive: <http://www.imc.org/ietf-openpgp/mail-archive/>
List-id: <ietf-openpgp.imc.org>
List-unsubscribe: <mailto:ietf-openpgp-request@imc.org?body=unsubscribe>
Sender: owner-ietf-openpgp@xxxxxxxxxxxx

I could be wrong, but it seems like PGP keysigning often happens without Proof-of-Possession of the corresponding private key. For example, at PGP keysigning parties, I think it's common for people to attest that a fingerprint really belongs to them, but not have to produce signatures with the corresponding private key.

Is there a risk that Alice could trick someone into certifying that Bob's public key belongs to her? Then someone receiving a signed message from Bob might incorrectly think it came from Alice.

Maybe, as a Security Consideration, the "Signer's User ID" subpacket should always be included in signatures. If Bob always included this subpacket in his signatures, then no-one could be tricked into thinking Bob's signed messages really came from Alice.

Trevor

Follow-Ups:
- Re: PoP & Signer's User ID subpacket?
  - From: David Shaw

Prev by Date: Re: OpenPGP Sub Keys
Next by Date: Re: PoP & Signer's User ID subpacket?
Previous by thread: Using all zeros for IV means that..
Next by thread: Re: PoP & Signer's User ID subpacket?
Index(es):
- Date
- Thread