openpgp-notes/book/source/02-highlevel.md

# A high-level view

## A very brief history

The OpenPGP standard has evolved over time, and remains under active development.

(Also see https://www.openpgp.org/about/history/)

### "Pretty Good Privacy (PGP)"

The earliest roots of OpenPGP trace back to *"Pretty Good Privacy (PGP)"*, a software program written by [Phil Zimmermann](https://en.wikipedia.org/wiki/Phil_Zimmermann) and first released in 1991.

The original PGP software has played a role in the political struggles sometimes referred to as the ["Crypto Wars"](https://en.wikipedia.org/wiki/Crypto_Wars) (also see https://en.wikipedia.org/wiki/Crypto_(book) for some of that history, including about the history of PGP).

The original "PGP" software was never under a Free Software license, even though its source code has at one point been widely published.

The ownership and branding of the product has [changed over the years](https://en.wikipedia.org/wiki/Pretty_Good_Privacy#PGP_Corporation_and_Symantec). The software enjoys a continued existence, albeit with [changing name and scope](https://en.wikipedia.org/wiki/Pretty_Good_Privacy#PGP_Corporation_encryption_applications).

### Standardizing OpenPGP

While the original PGP software was developed as a commercial product, the owner at the time, "PGP Inc." started a standardization effort with the IETF in July 1997.
The resulting open standard was named [OpenPGP](https://en.wikipedia.org/wiki/Pretty_Good_Privacy#OpenPGP).

The result of this early standardization work is [RFC 2440 "OpenPGP Message Format"](https://datatracker.ietf.org/doc/html/rfc2440), published November 1998. RFC 2440 describes OpenPGP version 3.

The name "OpenPGP" can be used freely by implementations (unlike the name "PGP", which is a [registered trademark](https://uspto.report/TM/74685229)).

### GnuPG, an early Free Software implementation

[First released 1997-12-20](https://gnupg.org/download/release_notes.html#sec-2-70), GnuPG (the "Gnu Privacy Guard") is an implementation of the OpenPGP standard.

GnuPG has been a major early Free Software implementation of OpenPGP. It has played an important (and successful) role in the release of NSA documents by [Edward Snowden](https://theintercept.com/2014/10/28/smuggling-snowden-secrets/).

The GnuPG program binary is called `gpg`, thus the names "GnuPG" and "gpg" are often used interchangeably.

Note: The terms "pgp key" and "gpg key" are sometimes used. Since PGP and GnuPG are just two of many existing OpenPGP implementations, the proper term is "OpenPGP key" (or "OpenPGP certificate", more on that [later](certificates_chapter)).

## The present

### OpenPGP version 4

In 2007, [RFC 4880](https://datatracker.ietf.org/doc/html/rfc4880), defining version 4 of OpenPGP, was published. This version is currently most commonly used in the wild.

(major_implementations)=
### Multiple major implementations

Today multiple new Free Software implementations of OpenPGP play important roles:

- Protonmail, who provide email encryption services for a large number of users, use (and maintain) [OpenPGP.js](https://openpgpjs.org/) as well as [GopenPGP](https://gopenpgp.org/).
- The Thunderbird email software is using the [RNP](https://www.rnpgp.org/) implementation for their built-in OpenPGP support since version 78 (released in mid-2020).
- The RPM Package Manager software includes an OpenPGP backend based on [Sequoia PGP](https://sequoia-pgp.org/), a modern OpenPGP implementation in Rust. Fedora [uses Sequoia PGP in rpm](https://sequoia-pgp.org/blog/2023/04/27/rpm-sequoia/) since version 38.

## The road ahead

### OpenPGP version 6

As of this writing (in 2023), [version 6 of OpenPGP](https://datatracker.ietf.org/doc/draft-ietf-openpgp-crypto-refresh/) is approaching publication as an RFC.
The IETF working group's [charter](https://datatracker.ietf.org/wg/openpgp/about/#autoid-1) centers around updating the cryptographic mechanisms, adding new algorithms, and deprecation of obsolete algorithms.

This document describes OpenPGP version 6, while pointing out differences to previous versions that are relevant to application developers.

Significant work on support for OpenPGP version 6 has already been done for multiple implementations, including:

- GOpenPGP,
- OpenPGP.js,
- PGPainless,
- PGPy,
- Sequoia PGP.

## Concepts

### Certificates/Keys

Use of OpenPGP is centered around (asymmetric) cryptographic keys.

In OpenPGP, bare cryptographic keys are combined with additional metadata into "OpenPGP certificates", which are a relatively complex data structure (OpenPGP certificates are also often called "OpenPGP keys").

An OpenPGP certificate can evolve over time, with components being added, expiring, or being marked as invalid.

See the chapter about [certificates](certificates_chapter) for more on OpenPGP certificates, and their internal makeup, and the chapter about [private keys](private_key_chapter) for handling of private key material in OpenPGP.

Other important topics around certificates are their management, authentication, and trust models. We will only touch on those, in this document.

### High-Level operations

With OpenPGP it's possible to:

- [Encrypt](encryption_chapter) and [Decrypt](decryption_chapter) Messages
- Sign Data
- Issue and examine Statements about Keys and Identities (to perform CA-like functionality)

### Building blocks

To perform these high-level operations, the following building blocks are used:

- Encryption
- Signature Algorithms
- OpenPGP Signatures (made from raw signatures; Certifications, Data Signatures)
- Keys, Subkeys
- User IDs

## Zooming in: Internal structure of OpenPGP data

OpenPGP data is internally structured as "packets." We'll look at examples of this internal structure throughout the following chapters. Familiarizing ourselves with the internal format of OpenPGP data will enable us to debug issues.

Gaining some familiarity with the internal structure of OpenPGP data will also help us to read the OpenPGP RFC, which describes the structure of OpenPGP packets in full detail.

In this text, however, most of the time we look at OpenPGP at a higher level of abstraction. 

(interop_section)=
## Interoperability

OpenPGP was standardized in 1997 to encourage development of interoperable implementations. This has already been a success early on, but in recent years, there has been [much development of new implementations]((major_implementations)).

Historically, interoperability has only been tested ad-hoc. Since 2019 the Sequoia project is maintaining and operating the ["OpenPGP interoperability test suite"](https://tests.sequoia-pgp.org/), for more rigorous and systematic testing. The test suite has identified numerous [issues](https://gitlab.com/sequoia-pgp/openpgp-interoperability-test-suite#hall-of-fame).
Initial outline and old notes (Rough merge of two precursor projects by Heiko, and outline notes by Paul) 2023-09-14 21:30:43 +02:00			`# A high-level view`

move history and present to ch3 2023-09-15 13:03:59 +02:00			`## A very brief history`

ch3: remove hard line breaks, some edits 2023-09-15 18:00:09 +02:00			`The OpenPGP standard has evolved over time, and remains under active development.`
move history and present to ch3 2023-09-15 13:03:59 +02:00
			`(Also see https://www.openpgp.org/about/history/)`

			`### "Pretty Good Privacy (PGP)"`

ch3: remove hard line breaks, some edits 2023-09-15 18:00:09 +02:00			`The earliest roots of OpenPGP trace back to "Pretty Good Privacy (PGP)", a software program written by [Phil Zimmermann](https://en.wikipedia.org/wiki/Phil_Zimmermann) and first released in 1991.`
move history and present to ch3 2023-09-15 13:03:59 +02:00
ch3: remove hard line breaks, some edits 2023-09-15 18:00:09 +02:00			`The original PGP software has played a role in the political struggles sometimes referred to as the ["Crypto Wars"](https://en.wikipedia.org/wiki/Crypto_Wars) (also see https://en.wikipedia.org/wiki/Crypto_(book) for some of that history, including about the history of PGP).`
move history and present to ch3 2023-09-15 13:03:59 +02:00
ch3: remove hard line breaks, some edits 2023-09-15 18:00:09 +02:00			`The original "PGP" software was never under a Free Software license, even though its source code has at one point been widely published.`
move history and present to ch3 2023-09-15 13:03:59 +02:00
ch3: remove hard line breaks, some edits 2023-09-15 18:00:09 +02:00			`The ownership and branding of the product has [changed over the years](https://en.wikipedia.org/wiki/Pretty_Good_Privacy#PGP_Corporation_and_Symantec). The software enjoys a continued existence, albeit with [changing name and scope](https://en.wikipedia.org/wiki/Pretty_Good_Privacy#PGP_Corporation_encryption_applications).`
move history and present to ch3 2023-09-15 13:03:59 +02:00
			`### Standardizing OpenPGP`

ch3: remove hard line breaks, some edits 2023-09-15 18:00:09 +02:00			`While the original PGP software was developed as a commercial product, the owner at the time, "PGP Inc." started a standardization effort with the IETF in July 1997.`
			`The resulting open standard was named [OpenPGP](https://en.wikipedia.org/wiki/Pretty_Good_Privacy#OpenPGP).`
move history and present to ch3 2023-09-15 13:03:59 +02:00
ch3: remove hard line breaks, some edits 2023-09-15 18:00:09 +02:00			`The result of this early standardization work is [RFC 2440 "OpenPGP Message Format"](https://datatracker.ietf.org/doc/html/rfc2440), published November 1998. RFC 2440 describes OpenPGP version 3.`
move history and present to ch3 2023-09-15 13:03:59 +02:00
ch3: remove hard line breaks, some edits 2023-09-15 18:00:09 +02:00			`The name "OpenPGP" can be used freely by implementations (unlike the name "PGP", which is a [registered trademark](https://uspto.report/TM/74685229)).`
move history and present to ch3 2023-09-15 13:03:59 +02:00
Edits of chapter 2 Integrates Paul's suggestions in #20 2023-09-20 22:32:37 +02:00			`### GnuPG, an early Free Software implementation`

			`[First released 1997-12-20](https://gnupg.org/download/release_notes.html#sec-2-70), GnuPG (the "Gnu Privacy Guard") is an implementation of the OpenPGP standard.`
move history and present to ch3 2023-09-15 13:03:59 +02:00
Edits of chapter 2 Integrates Paul's suggestions in #20 2023-09-20 22:32:37 +02:00			`GnuPG has been a major early Free Software implementation of OpenPGP. It has played an important (and successful) role in the release of NSA documents by [Edward Snowden](https://theintercept.com/2014/10/28/smuggling-snowden-secrets/).`
move history and present to ch3 2023-09-15 13:03:59 +02:00
Edits of chapter 2 Integrates Paul's suggestions in #20 2023-09-20 22:32:37 +02:00			The GnuPG program binary is called `gpg`, thus the names "GnuPG" and "gpg" are often used interchangeably.
move history and present to ch3 2023-09-15 13:03:59 +02:00
Edits of chapter 2 Integrates Paul's suggestions in #20 2023-09-20 22:32:37 +02:00			`Note: The terms "pgp key" and "gpg key" are sometimes used. Since PGP and GnuPG are just two of many existing OpenPGP implementations, the proper term is "OpenPGP key" (or "OpenPGP certificate", more on that [later](certificates_chapter)).`
Add note about 'pgp key' vs. 'gpg key' 2023-09-18 11:26:21 +02:00
move history and present to ch3 2023-09-15 13:03:59 +02:00			`## The present`

Edits in chapter two; add link anchors to point to 2023-09-20 14:48:26 +02:00			`### OpenPGP version 4`

Edits of chapter 2 Integrates Paul's suggestions in #20 2023-09-20 22:32:37 +02:00			`In 2007, [RFC 4880](https://datatracker.ietf.org/doc/html/rfc4880), defining version 4 of OpenPGP, was published. This version is currently most commonly used in the wild.`
Edits in chapter two; add link anchors to point to 2023-09-20 14:48:26 +02:00
			`(major_implementations)=`
move history and present to ch3 2023-09-15 13:03:59 +02:00			`### Multiple major implementations`

ch3: remove hard line breaks, some edits 2023-09-15 18:00:09 +02:00			`Today multiple new Free Software implementations of OpenPGP play important roles:`
move history and present to ch3 2023-09-15 13:03:59 +02:00
Edits in chapter two; add link anchors to point to 2023-09-20 14:48:26 +02:00			`- Protonmail, who provide email encryption services for a large number of users, use (and maintain) [OpenPGP.js](https://openpgpjs.org/) as well as [GopenPGP](https://gopenpgp.org/).`
ch3: remove hard line breaks, some edits 2023-09-15 18:00:09 +02:00			`- The Thunderbird email software is using the [RNP](https://www.rnpgp.org/) implementation for their built-in OpenPGP support since version 78 (released in mid-2020).`
			`- The RPM Package Manager software includes an OpenPGP backend based on [Sequoia PGP](https://sequoia-pgp.org/), a modern OpenPGP implementation in Rust. Fedora [uses Sequoia PGP in rpm](https://sequoia-pgp.org/blog/2023/04/27/rpm-sequoia/) since version 38.`
move history and present to ch3 2023-09-15 13:03:59 +02:00
Edits in chapter two; add link anchors to point to 2023-09-20 14:48:26 +02:00			`## The road ahead`

move history and present to ch3 2023-09-15 13:03:59 +02:00			`### OpenPGP version 6`

Edits in chapter two; add link anchors to point to 2023-09-20 14:48:26 +02:00			`As of this writing (in 2023), [version 6 of OpenPGP](https://datatracker.ietf.org/doc/draft-ietf-openpgp-crypto-refresh/) is approaching publication as an RFC.`
Edits of chapter 2 Integrates Paul's suggestions in #20 2023-09-20 22:32:37 +02:00			`The IETF working group's [charter](https://datatracker.ietf.org/wg/openpgp/about/#autoid-1) centers around updating the cryptographic mechanisms, adding new algorithms, and deprecation of obsolete algorithms.`
move history and present to ch3 2023-09-15 13:03:59 +02:00
Edits of chapter 2 Integrates Paul's suggestions in #20 2023-09-20 22:32:37 +02:00			`This document describes OpenPGP version 6, while pointing out differences to previous versions that are relevant to application developers.`
Edits in chapter two; add link anchors to point to 2023-09-20 14:48:26 +02:00
Edits of chapter 2 Integrates Paul's suggestions in #20 2023-09-20 22:32:37 +02:00			`Significant work on support for OpenPGP version 6 has already been done for multiple implementations, including:`
Slightly more structure for "highlevel" 2023-09-15 14:11:57 +02:00
Edits of chapter 2 Integrates Paul's suggestions in #20 2023-09-20 22:32:37 +02:00			`- GOpenPGP,`
			`- OpenPGP.js,`
			`- PGPainless,`
			`- PGPy,`
			`- Sequoia PGP.`
Slightly more structure for "highlevel" 2023-09-15 14:11:57 +02:00
Edits of chapter 2 Integrates Paul's suggestions in #20 2023-09-20 22:32:37 +02:00			`## Concepts`
Edits in chapter two; add link anchors to point to 2023-09-20 14:48:26 +02:00
Slightly more structure for "highlevel" 2023-09-15 14:11:57 +02:00			`### Certificates/Keys`

Edits of chapter 2 Integrates Paul's suggestions in #20 2023-09-20 22:32:37 +02:00			`Use of OpenPGP is centered around (asymmetric) cryptographic keys.`

			`In OpenPGP, bare cryptographic keys are combined with additional metadata into "OpenPGP certificates", which are a relatively complex data structure (OpenPGP certificates are also often called "OpenPGP keys").`
Slightly more structure for "highlevel" 2023-09-15 14:11:57 +02:00
Edits of chapter 2 Integrates Paul's suggestions in #20 2023-09-20 22:32:37 +02:00			`An OpenPGP certificate can evolve over time, with components being added, expiring, or being marked as invalid.`

			`See the chapter about [certificates](certificates_chapter) for more on OpenPGP certificates, and their internal makeup, and the chapter about [private keys](private_key_chapter) for handling of private key material in OpenPGP.`
Edits in chapter two; add link anchors to point to 2023-09-20 14:48:26 +02:00
			`Other important topics around certificates are their management, authentication, and trust models. We will only touch on those, in this document.`
Slightly more structure for "highlevel" 2023-09-15 14:11:57 +02:00
Edits of chapter 2 Integrates Paul's suggestions in #20 2023-09-20 22:32:37 +02:00			`### High-Level operations`

			`With OpenPGP it's possible to:`

			`- [Encrypt](encryption_chapter) and [Decrypt](decryption_chapter) Messages`
			`- Sign Data`
			`- Issue and examine Statements about Keys and Identities (to perform CA-like functionality)`
Slightly more structure for "highlevel" 2023-09-15 14:11:57 +02:00
Edits of chapter 2 Integrates Paul's suggestions in #20 2023-09-20 22:32:37 +02:00			`### Building blocks`
Edits in chapter two; add link anchors to point to 2023-09-20 14:48:26 +02:00
Edits of chapter 2 Integrates Paul's suggestions in #20 2023-09-20 22:32:37 +02:00			`To perform these high-level operations, the following building blocks are used:`

			`- Encryption`
			`- Signature Algorithms`
			`- OpenPGP Signatures (made from raw signatures; Certifications, Data Signatures)`
			`- Keys, Subkeys`
			`- User IDs`
Slightly more structure for "highlevel" 2023-09-15 14:11:57 +02:00
Edits in chapter two; add link anchors to point to 2023-09-20 14:48:26 +02:00			`## Zooming in: Internal structure of OpenPGP data`
Slightly more structure for "highlevel" 2023-09-15 14:11:57 +02:00
Edits of chapter 2 Integrates Paul's suggestions in #20 2023-09-20 22:32:37 +02:00			`OpenPGP data is internally structured as "packets." We'll look at examples of this internal structure throughout the following chapters. Familiarizing ourselves with the internal format of OpenPGP data will enable us to debug issues.`

			`Gaining some familiarity with the internal structure of OpenPGP data will also help us to read the OpenPGP RFC, which describes the structure of OpenPGP packets in full detail.`
ch3: remove hard line breaks, some edits 2023-09-15 18:00:09 +02:00
Edits of chapter 2 Integrates Paul's suggestions in #20 2023-09-20 22:32:37 +02:00			`In this text, however, most of the time we look at OpenPGP at a higher level of abstraction.`
Edits in chapter two; add link anchors to point to 2023-09-20 14:48:26 +02:00
			`(interop_section)=`
ch3: remove hard line breaks, some edits 2023-09-15 18:00:09 +02:00			`## Interoperability`

Edits of chapter 2 Integrates Paul's suggestions in #20 2023-09-20 22:32:37 +02:00			`OpenPGP was standardized in 1997 to encourage development of interoperable implementations. This has already been a success early on, but in recent years, there has been [much development of new implementations]((major_implementations)).`
Edits in chapter two; add link anchors to point to 2023-09-20 14:48:26 +02:00
Edits of chapter 2 Integrates Paul's suggestions in #20 2023-09-20 22:32:37 +02:00			`Historically, interoperability has only been tested ad-hoc. Since 2019 the Sequoia project is maintaining and operating the ["OpenPGP interoperability test suite"](https://tests.sequoia-pgp.org/), for more rigorous and systematic testing. The test suite has identified numerous [issues](https://gitlab.com/sequoia-pgp/openpgp-interoperability-test-suite#hall-of-fame).`