[OTR-users] PGP integration?

Paul Wouters paul at cypherpunks.ca
Thu Sep 27 23:52:29 EDT 2012


On Thu, 27 Sep 2012, Ian Goldberg wrote:

> Subject: Re: [OTR-users] PGP integration?
> 
> On Fri, Sep 28, 2012 at 02:19:22AM +0100, Ximin Luo wrote:
>> Hi, are there any plans to integrate OTR keys with PGP? (c.f. how
>> monkeysphere integrates SSH keys with PGP).
>>
>> It's good that crypto products don't also try to provide a PKI and
>> reimplement the wheel, but then they should actually *use* existing
>> ones to fill this gap!
>
> This comes up on the list now and again.  ;-)
>
> One big problem is that there's no way to bind the PGP key for
> "bob at example.com" to the AIM ID "angrybob".

That's why I want to submit an RFC for an OTRFP RRtype record for
use with DNSSEC/DANE, pretty much analogue to:

https://tools.ietf.org/html/draft-hoffman-dane-smime

It won't help you much against google changing dns on your at gmail.com,
but at least yourname at yourdomain.com should be pretty reliable.

Paul
ps. That, and I still disagree with Ian and think RFCs count as peer
reviews publications in the context of my Erdős–Bacon number.



More information about the OTR-users mailing list