roughconsensusandrunningcode/slides-openpgp-2024
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Compare commits

base: roughconsensusandrunningcode:b3b7884c0c42b7b9a4833af60fb318ad04103d0d
Branches Tags
roughconsensusandrunningcode:main
...
compare: roughconsensusandrunningcode:a356662a3913e1c73ae41ce48a62afc2f149a93e
Branches Tags
roughconsensusandrunningcode:main

2 commits
b3b7884c0c ... a356662a39

Author SHA1 Message Date
Fabrizio T
a356662a39 slide link utili 2024-11-10 11:25:41 +01:00
Fabrizio T
c6f873e232 slide 15-16 2024-11-10 11:01:32 +01:00
1 changed files with 79 additions and 0 deletions
Show stats Expand all files Collapse all files

79
src/slides.md
View file

@ -279,11 +279,90 @@ _Detached Sign-Verify roundtrip with minimal key from Appendix A.3 of RFC 9580._
Fonte: [_OpenPGP interoperability test suite_](https://tests.sequoia-pgp.org/)
---
<style scoped>
p {font-size: 35px}
p:nth-child(4) {font-size: 29px}
table {font-size: 27px; margin-top:25px; width: 100%}
td:nth-child(2) {font-size: 17px}
th {display: none;}
</style>
# I prossimi sviluppi
**Priorità**: Post-Quantum Cryptography ([draft-ietf-openpgp-pqc](https://datatracker.ietf.org/doc/draft-ietf-openpgp-pqc/)) e Migration path v4 &rArr; v6 &rArr; v6+PQC, a seguire:
| - | - |
| ------------------------------------------- | -------------------------------------------------------------------------------------------------------------------------------- |
| Replacement Key Signalling Mechanism | [draft-ietf-openpgp-replacementkey](https://datatracker.ietf.org/doc/draft-ietf-openpgp-replacementkey/) |
| 1st-Party Approved 3rd-Party Certifications | [draft-dkg-openpgp-1pa3pc](https://datatracker.ietf.org/doc/draft-dkg-openpgp-1pa3pc/) |
| Persistent Symmetric Keys | [draft-ietf-openpgp-persistent-symmetric-keys](https://datatracker.ietf.org/doc/draft-ietf-openpgp-persistent-symmetric-keys/) |
| Stateless Command Line Interface (sop) | [draft-dkg-openpgp-stateless-cli](https://datatracker.ietf.org/doc/draft-dkg-openpgp-stateless-cli/) |
| HTTP Keyserver Protocol | [draft-gallagher-openpgp-hkp](https://datatracker.ietf.org/doc/draft-gallagher-openpgp-hkp/) |
| Web Key Directory | [draft-koch-openpgp-webkey-service](https://datatracker.ietf.org/doc/draft-koch-openpgp-webkey-service/) |
| OpenPGP External Secret Keys (smart card) | [draft-dkg-openpgp-external-secrets](https://datatracker.ietf.org/doc/draft-dkg-openpgp-external-secrets/) |
| Signature Salt Notation | [draft-huigens-openpgp-signature-salt-notation](https://datatracker.ietf.org/doc/draft-huigens-openpgp-signature-salt-notation/) |
E ancora: Forward secrecy, Context binding, Web of Trust, Key Verification, ... ([vedi charter](https://datatracker.ietf.org/doc/charter-ietf-openpgp/))
---
<style scoped>
li {font-size:37px; margin-bottom:15px}
li li {font-size:35px}
li small {font-size:35px; display: inline-block; margin: 0 0 0 10px}
</style>
# Migrazione
- Diffusione implementazioni 9580-compliant e successivamente PQC
<small>Sarà un processo lungo: richiede un sacco di lavoro lato librerie, backend, frontend, infrastruttura</small>
- Alcune nuove funzioni possono essere usate con le "vecchie" chiavi v4 (Argon2, AEAD), altre no (firma)
- Sfida: creare e distribuire nuove chiavi v6 senza "rompere" la Web of Trust e garantendo conversazioni di gruppo
- Proposta "Replacement Key": avere due chiavi, una v4 e una v6, reciprocamente firmate; un meccanismo semiautomatico gestisce retrieve e fallback
---
# TODO
todo
---
<style scoped>
ul {font-size: 35px; margin-top: 20px}
li {margin-top:10px}
li a {font-size:30px; display: block; margin-top:5px}
</style>
# Link utili
- RFC 9580
https://www.rfc-editor.org/rfc/rfc9580.html
- IETF Working Group
https://datatracker.ietf.org/wg/openpgp/about/
- LibrePGP
https://librepgp.org/
- _A Critique on the OpenPGP Updates_
https://librepgp.org/#critique
- _A Critique on “A Critique on the OpenPGP Updates”_
https://blog.pgpkeys.eu/critique-critique.html
- _A Summary of Known Security Issues in LibrePGP_
https://blog.pgpkeys.eu/security-issues-librepgp-2024-08.html
---
<style scoped>
ul {font-size: 35px; margin-top: 20px}
li {margin-top:10px}
li a {font-size:30px; display: block; margin-top:5px}
</style>
# Link utili
- _Abuse-Resistant OpenPGP Keystores_
https://datatracker.ietf.org/doc/draft-dkg-openpgp-abuse-resistant-keystore/
- _The State of the Keyservers in 2024_
https://blog.pgpkeys.eu/state-keyservers-2024.html
- OpenPGP for application developers
https://openpgp.dev/book/
---
<!-- _class: bigtitle -->