slide 15-16
This commit is contained in:
parent
b3b7884c0c
commit
c6f873e232
1 changed files with 41 additions and 0 deletions
|
|
@ -279,6 +279,47 @@ _Detached Sign-Verify roundtrip with minimal key from Appendix A.3 of RFC 9580._
|
||||||
|
|
||||||
Fonte: [_OpenPGP interoperability test suite_](https://tests.sequoia-pgp.org/)
|
Fonte: [_OpenPGP interoperability test suite_](https://tests.sequoia-pgp.org/)
|
||||||
|
|
||||||
|
|
||||||
|
---
|
||||||
|
<style scoped>
|
||||||
|
p {font-size: 35px}
|
||||||
|
p:nth-child(4) {font-size: 29px}
|
||||||
|
table {font-size: 27px; margin-top:25px; width: 100%}
|
||||||
|
td:nth-child(2) {font-size: 17px}
|
||||||
|
th {display: none;}
|
||||||
|
</style>
|
||||||
|
# I prossimi sviluppi
|
||||||
|
|
||||||
|
**Priorità**: Post-Quantum Cryptography ([draft-ietf-openpgp-pqc](https://datatracker.ietf.org/doc/draft-ietf-openpgp-pqc/)) e Migration path v4 ⇒ v6 ⇒ v6+PQC, a seguire:
|
||||||
|
|
||||||
|
| - | - |
|
||||||
|
| ------------------------------------------- | -------------------------------------------------------------------------------------------------------------------------------- |
|
||||||
|
| Replacement Key Signalling Mechanism | [draft-ietf-openpgp-replacementkey](https://datatracker.ietf.org/doc/draft-ietf-openpgp-replacementkey/) |
|
||||||
|
| 1st-Party Approved 3rd-Party Certifications | [draft-dkg-openpgp-1pa3pc](https://datatracker.ietf.org/doc/draft-dkg-openpgp-1pa3pc/) |
|
||||||
|
| Persistent Symmetric Keys | [draft-ietf-openpgp-persistent-symmetric-keys](https://datatracker.ietf.org/doc/draft-ietf-openpgp-persistent-symmetric-keys/) |
|
||||||
|
| Stateless Command Line Interface (sop) | [draft-dkg-openpgp-stateless-cli](https://datatracker.ietf.org/doc/draft-dkg-openpgp-stateless-cli/) |
|
||||||
|
| HTTP Keyserver Protocol | [draft-gallagher-openpgp-hkp](https://datatracker.ietf.org/doc/draft-gallagher-openpgp-hkp/) |
|
||||||
|
| Web Key Directory | [draft-koch-openpgp-webkey-service](https://datatracker.ietf.org/doc/draft-koch-openpgp-webkey-service/) |
|
||||||
|
| OpenPGP External Secret Keys (smart card) | [draft-dkg-openpgp-external-secrets](https://datatracker.ietf.org/doc/draft-dkg-openpgp-external-secrets/) |
|
||||||
|
| Signature Salt Notation | [draft-huigens-openpgp-signature-salt-notation](https://datatracker.ietf.org/doc/draft-huigens-openpgp-signature-salt-notation/) |
|
||||||
|
|
||||||
|
E ancora: Forward secrecy, Context binding, Web of Trust, Key Verification, ... ([vedi charter](https://datatracker.ietf.org/doc/charter-ietf-openpgp/))
|
||||||
|
|
||||||
|
---
|
||||||
|
<style scoped>
|
||||||
|
li {font-size:37px; margin-bottom:15px}
|
||||||
|
li li {font-size:35px}
|
||||||
|
li small {font-size:35px; display: inline-block; margin: 0 0 0 10px}
|
||||||
|
</style>
|
||||||
|
# Migrazione
|
||||||
|
|
||||||
|
- Diffusione implementazioni 9580-compliant e successivamente PQC
|
||||||
|
<small>Sarà un processo lungo: richiede un sacco di lavoro lato librerie, backend, frontend, infrastruttura</small>
|
||||||
|
- Alcune nuove funzioni possono essere usate con le "vecchie" chiavi v4 (Argon2, AEAD), altre no (firma)
|
||||||
|
- Sfida: creare e distribuire nuove chiavi v6 senza "rompere" la Web of Trust e garantendo conversazioni di gruppo
|
||||||
|
- Proposta "Replacement Key": avere due chiavi, una v4 e una v6, reciprocamente firmate; un meccanismo semiautomatico gestisce retrieve e fallback
|
||||||
|
|
||||||
|
|
||||||
---
|
---
|
||||||
# TODO
|
# TODO
|
||||||
|
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue