PQC public key format specification

Werner Koch wk at gnupg.org
Tue Feb 13 18:43:34 CET 2024 

On Tue, 13 Feb 2024 12:49, andrewg said:

> Yes. If somebody has their secret key material on a smartcard but has
> lost their public key (for whatever reason) they cannot decrypt their

That is why gpg records the creation time (and if ever needed) the KDF
parameters along with the stub file.  This allows to re-create the
public key but this is only a hack for the rare case that a public key
gets lost and the card still works.  Further, this is only a concern for
the OpenPGP card because when Achim and me designed them, the space on
the cards (and the I/O speed) where pretty limited.

> historic data. The extra parameters (OIDs and KDFs) are stored

You need to translate from the card OS's representation to the one
defined by OpenPGP anyway.  We even need to modify the RSA parameters to
get or store them opn the card.

> since ECC keys are smaller than RSA) or they could have been stored in

Actually we store them on most cards and in general they are anyway
fixed.

> failure modes (and a combinatoric explosion). Was this in the spirit
> of the OpenPGP way of doing things? It's certainly arguable that it
> was not and that we shouldn't repeat that mistake.

Pretty please no OpenPGP WG discussion style and don't accidentally
trick us getting into this either. See the rules posted at
https://lists.gnupg.org/pipermail/librepgp-discuss/2023/000000.html
(copied below)


Salam-Shalom,

   Werner



=-=-=-=-=
Rules for this mailing lists are:

- Be friendly.
- Be technically focused.
- Everything written here is in the Public Domain except for code
  snippets which are under their respective licenses.
- No top posting and please strip qoutes to a sensible size.
- Avoid posting only URLs.  If this can't be avoided please also post a
  summary.
- Keep the S/N ratio high and avoid a discussion style as introduced
  around 2018 in the OpenPGP working group mailing list.
- Posters which don't stick to these rules may be set on moderation.


-- 
The pioneers of a warless world are the youth that
refuse military service.             - A. Einstein
-------------- next part --------------
A non-text attachment was scrubbed...
Name: openpgp-digital-signature.asc
Type: application/pgp-signature
Size: 247 bytes
Desc: not available
URL: <https://librepgp.org/pipermail/librepgp-discuss/attachments/20240213/5f96eec9/attachment.sig>

More information about the LibrePGP-discuss mailing list