gnu-crypto-discuss
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [GNU Crypto] RFC: New keystore format

From: Raif S. Naffah
Subject: Re: [GNU Crypto] RFC: New keystore format
Date: Sun, 13 Jul 2003 15:06:26 +1000
User-agent: KMail/1.5.1 
-----BEGIN PGP SIGNED MESSAGE-----
Hash: RIPEMD160

On Sun, 13 Jul 2003 02:49 pm, Casey Marshall wrote:
> On Sun, Jul 13, 2003 at 01:07:27PM +1000, Raif S. Naffah wrote:
> > On Sun, 13 Jul 2003 11:37 am, Casey Marshall wrote:
> > > On Sun, Jul 13, 2003 at 09:13:34AM +1000, Raif S. Naffah wrote:
> > > > On Sun, 13 Jul 2003 04:47 am, Casey Marshall wrote:
> > [...]
> > > Also: on a provider level we can provide different semantics
> > > based around the desired protection level. I.e. "SecretGKS" could
> > > be a keystore that looks like this at the top level:
> > >
> > >    GKS_TYPE_PBE {
> > >       GKS_TYPE_PBMAC {
> > >          (keys and certificates)
> > >          GKS_TYPE_END
> > >       }
> > >       GKS_TYPE_END
> > >    }
> > >
> > > And also maybe a non-encrypting keystore that does not accept
> > > private keys.
> >
> > that's exactly what i'm talking about.  putting everything together
> > in one file doesnt leave too much room for maneuver.
> >
> > also separating public data from secret one opens the door for
> > sharing the former between users.
>
> We could allow mixing, but have our normal practice be to keep them
> separate.

we can.  in this case, PublickKeyring and SecretKeyring must be 
interfaces.  shouldnt be a problem.


cheers;
rsn
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.7 (GNU/Linux)
Comment: Que du magnifique

iD8DBQE/EOjT+e1AKnsTRiERA+4pAKDRCuBJcKwVQb/ZjKa3RC4C/yqT4QCeNAwH
bGGEUXDaoweItlXpQjZJwA4=
=MXMx
-----END PGP SIGNATURE-----
reply via email to
[Prev in Thread] Current Thread [Next in Thread]