vanitasvitae/openpgp-notes
1
0
Fork 0
mirror of https://codeberg.org/openpgp/notes.git synced 2024-11-23 08:02:05 +01:00
Code Issues Projects Releases Packages Wiki Activity

ch6, ch7: add notes

Browse source
This commit is contained in:
Heiko Schaefer 2023-10-28 13:20:57 +02:00
parent e7350e8f7a
commit 67ee9bfbe7
No known key found for this signature in database
GPG key ID: 4A849A1904CCBD7D
2 changed files with 15 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

6
book/source/06-signatures.md
View file

@ -96,6 +96,12 @@ RFC Sections [5.2.3.11](https://www.ietf.org/archive/id/draft-ietf-openpgp-crypt
### "Negotiating" signature hash algorithm based on recipients preference subpackets
```{admonition} TODO
:class: warning
investigate, discuss: GnuPG uses preference packets for the User ID that was addressed while sequoia completely omits User ID preferences and either uses Direct Key Sigs or (I think) primary User ID.
```
### Explore viability of having multiple signatures, e.g. v4+v6?
```{admonition} TODO

9
book/source/07-signing_data.md
View file

@ -15,6 +15,15 @@ Add content, including:
- Signature of a canonical text document
- "The signature is calculated over the text data with its line endings converted to `<CR><LF>`"
data signatures have three forms:
- detached,
- inline (that is signature contains the data which is signed inside of a signature container) and
- cleartext which I guess will be special-cased in v6 (to require small text etc).
(This corresponds to gnupg's --detach-sign --sign and --clear-sign)
cleartext: explain text transforms for cleartext signatures (LF->CRLF etc)
```
## Data signatures