Post · bonfire.cafe

keys.openpgp.org

@keys_openpgp_org@floss.social · 2 weeks ago

The #OpenPGP ecosystem is moving forward with new certificate formats from RFC 9580, as well as upcoming #PQC support via https://datatracker.ietf.org/doc/draft-ietf-openpgp-pqc/

We are working towards support for these modern certificate types on https://keys.openpgp.org

For this, we need to overhaul and extend our user-facing workflows, as well as the API that KOO exposes. The KOO board has decided to move forward based on the HKPv2 protocol:

https://datatracker.ietf.org/doc/draft-gallagher-openpgp-hkp/

🧵 1/2

IETF Datatracker

Post-Quantum Cryptography in OpenPGP

This document defines a post-quantum public-key algorithm extension for the OpenPGP protocol. Given the generally assumed threat of a cryptographically relevant quantum computer, this extension provides a basis for long-term secure OpenPGP signatures and ciphertexts. Specifically, it defines composite public-key encryption based on ML- KEM (formerly CRYSTALS-Kyber), composite public-key signatures based on ML-DSA (formerly CRYSTALS-Dilithium), both in combination with elliptic curve cryptography, and SLH-DSA (formerly SPHINCS+) as a standalone public key signature scheme.

Log in

bonfire.cafe

A space for Bonfire maintainers and contributors to communicate

bonfire.cafe: About · Code of conduct · Privacy · Users · Instances

Bonfire social · 1.0.0 no JS en

Automatic federation enabled