[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Signature calculation language

To: OpenPGP <ietf-openpgp@xxxxxxx>
Subject: Re: Signature calculation language
From: Jon Callas <jon@xxxxxxxxxx>
Date: Tue, 18 Apr 2006 11:59:32 -0700
In-reply-to: <87psqa6ds2.fsf@xxxxxxxxxxxxxxxxxxxxx>
List-archive: <http://www.imc.org/ietf-openpgp/mail-archive/>
List-id: <ietf-openpgp.imc.org>
List-unsubscribe: <mailto:ietf-openpgp-request@imc.org?body=unsubscribe>
References: <20051011222500.0352B57EF9@xxxxxxxxxx> <20051012025034.GA5034@xxxxxxxxxxxxxxx> <87psqa6ds2.fsf@xxxxxxxxxxxxxxxxxxxxx>
Sender: owner-ietf-openpgp@xxxxxxxxxxxx



On 12 Oct 2005, at 6:55 AM, Werner Koch wrote:


On Tue, 11 Oct 2005 22:50:34 -0400, David Shaw said:

I support making 0x19 backsigs a MUST.


I concur with David.  I am actually a heavy user of signing subkeys
because they allow to keep the primary key offline.


Section 10.1 says:

   Each Subkey packet MUST be followed by one Signature packet, which
   should be a subkey binding signature issued by the top level key.
   For subkeys that can issue signatures, the subkey binding signature
   MUST contain an embedded signature subpacket with a primary key
   binding signature (0x19) issued by the subkey on the top level key.

And I think this does make it a MUST.

If there should be anything else (or this is wrong, unclear, etc.),just let me know.

Jon

References:
- Re: Signature calculation language
  - From: "Hal Finney"
- Re: Signature calculation language
  - From: David Shaw
- Re: Signature calculation language
  - From: Werner Koch

Prev by Date: On-line Registration Closing Sunday
Next by Date: Re: Signature calculation language
Previous by thread: Re: Signature calculation language
Next by thread: Re: Signature calculation language
Index(es):
- Date
- Thread