On 01/25/2012 07:52 AM, Hauke Laging wrote: > IIRC there is no single technical issue which is regarded as a problem about > which it is unclear whether it can be solved.
i've given a fairly detailed technical writeup of why i've stopped
pursuit of this particular goal.
> The dispute is mainly about the interpretation whether is makes sense to
> offer
> such a feature given the amount of addresses that cannot be protected: This
> would only work for addresses which cannot be found by enumeration. Such
> addresses are not "nice". mailinglis...@hauke-laging.de need not be protected
> that way. This feature would require something like
> mailinglisten--noenum-yvsyi...@hauke-laging.de against spammers,
> mailinglisten--noenum-zttgfznhu3rnkfyaxjuym...@hauke-laging.de against real
> threats (government agencies in e.g. China).
If people use e-mail addresses like this, then they could probably just
derive the high-entropy-portion of their e-mail address from their key's
fingerprint directly, and attach only a User ID like "anonymous".
e.g.
dkg--noenum-0ee5be979282d80b9f7540f1ccd2ed94d2173...@fifthhorseman.net
Then no keysigning would be needed as anyone who knows the e-mail
address already knows the key to use, and the key is fetchable from the
keyservers by keyid directly.
This can all be done with the current toolchain, without modification,
afacit. The only problem is that you'd have to adjust your MUA to tell
it which key to use explicitly for mailing to addresses like this. If
you think this is the way to go, maybe you should talk to MUA
developers, or propose a mechanism or heuristic gpg could use to
pre-select keys from e-mail addresses like this.
> The technical questions would have to be answered but could be rather easily.
> But why write specs if noone is willing to implement it, why write code if it
> would not be accpeted, why point at IETF though the other way round is
> expected there?
Clearly people are interested in the idea and have done some work to
think about it how it can be done, and what would be the right way to
go. No one who implements something someone else suggests is going to
want to do it without a concrete, well-discussed spec beforehand.
Several of us have had the discussion that resulted in my deciding that
the tradeoffs for the scheme we came up with (hashed userids) wasn't
worth the extra complications.
Please propose an alternate scheme that you think would be an
improvement if you think such a scheme exists. Hopefully, it will get
critiqued, though there are no guarantees that anyone will implement
whatever scheme (if any) finally overcomes the objections raised during
discussion.
--dkg
signature.asc
Description: OpenPGP digital signature
_______________________________________________ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
