[Security] PGP (XEP-0027)

Simon Josefsson simon at josefsson.org
Tue Jun 2 15:34:33 CDT 2009


Peter Saint-Andre <stpeter at stpeter.im> writes:

> On 6/2/09 1:56 PM, Dave Cridland wrote:
>> On Tue Jun  2 18:56:35 2009, Jonathan Schleifer wrote:
>>> What if DSA gets completely broken someday? Then we're screwed. And if
>>> we want to be algorithm-independant, we need to implement something
>>> very similar to OpenPGP anyway.
>> 
>> Or TLS.
>> 
>> Which, incidentally, can use PGP keys.
>
> AFAIK only GnuTLS has (experimental) support for RFC 5081 (which is
> itself experimental):
>
> http://tools.ietf.org/html/rfc5081

The OpenPGP implementation in GnuTLS is not experimental.  I believe the
RFC is experimental for IETF political reasons, there is no organized
experiment conducted as far as I know.

/Simon


More information about the Security mailing list