From 061f4a9625753fbc6ab5665bd100d311c64da98b Mon Sep 17 00:00:00 2001 From: Heiko Schaefer Date: Wed, 4 Oct 2023 14:55:17 +0200 Subject: [PATCH] ch2: add section about PQC work; move "zooming in" to the end --- book/source/02-highlevel.md | 18 +++++++++++------- 1 file changed, 11 insertions(+), 7 deletions(-) diff --git a/book/source/02-highlevel.md b/book/source/02-highlevel.md index 9c1d8f2..10682d5 100644 --- a/book/source/02-highlevel.md +++ b/book/source/02-highlevel.md @@ -70,6 +70,10 @@ Significant work on support for OpenPGP version 6 has already been done for mult - [PGPy](https://github.com/dkg/PGPy/tree/dkg/crypto-refresh), - [Sequoia-PGP](https://gitlab.com/sequoia-pgp/sequoia/-/tree/crypto-refresh). +### Post-Quantum Cryptography in OpenPGP + +There is [ongoing work](https://datatracker.ietf.org/doc/draft-wussler-openpgp-pqc/) to standardize and add support for post-quantum public-key algorithms in OpenPGP. This project is funded by the [german "BSI"](https://en.wikipedia.org/wiki/Federal_Office_for_Information_Security). Goals include adding support for post-quantum cryptography to Thunderbird and GnuPG. A [presentation](https://datatracker.ietf.org/meeting/113/materials/slides-113-openpgp-a-post-quantum-approach-for-openpgp-00) was given at [IETF 113](https://datatracker.ietf.org/meeting/113/session/openpgp/). + ## Concepts ### Certificates/Keys @@ -96,6 +100,13 @@ With OpenPGP it's possible to: To perform these high-level operations, a set of [established cryptographic mechanisms](cyrptography_chapter) are used as building blocks, and combined into OpenPGP's format, which additionally deals with identities and their verification. +(interop_section)= +## Interoperability + +OpenPGP was standardized in 1997 to encourage development of interoperable implementations. This has already been a success early on, but in recent years, there has been [much development of new implementations](major_implementations). + +Historically, interoperability has only been tested in an adhoc manner. Since 2019, the Sequoia project is maintaining and operating the ["OpenPGP interoperability test suite"](https://tests.sequoia-pgp.org/), for more rigorous and systematic testing. The test suite has identified numerous [issues](https://gitlab.com/sequoia-pgp/openpgp-interoperability-test-suite#hall-of-fame). + ## Zooming in: Internal structure of OpenPGP data OpenPGP data is internally structured as "packets." We'll look at examples of this internal structure throughout the following chapters. Familiarizing ourselves with the internal format of OpenPGP data will enable us to more easily debug issues. @@ -103,10 +114,3 @@ OpenPGP data is internally structured as "packets." We'll look at examples of th Gaining some familiarity with the internal structure of OpenPGP data will also help us to read the OpenPGP RFC, which describes the internal structure of OpenPGP packets in full detail. (Most of the time, however, we will look at OpenPGP artifacts at a higher level of abstraction.) - -(interop_section)= -## Interoperability - -OpenPGP was standardized in 1997 to encourage development of interoperable implementations. This has already been a success early on, but in recent years, there has been [much development of new implementations](major_implementations). - -Historically, interoperability has only been tested in an adhoc manner. Since 2019, the Sequoia project is maintaining and operating the ["OpenPGP interoperability test suite"](https://tests.sequoia-pgp.org/), for more rigorous and systematic testing. The test suite has identified numerous [issues](https://gitlab.com/sequoia-pgp/openpgp-interoperability-test-suite#hall-of-fame).