-
Notifications
You must be signed in to change notification settings - Fork 243
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Create a Fingerprint array to associate multiple public keys with Namecoin identities. #28
Comments
Note that I'm working on an improved pull request that will replace #25 |
OK cool I was thinking we could discuss each of these points individually. I have some suggested improvements for this, for example, and I think we can get others to chime in as well. |
I worked out a simpler schema overall, as well as an easier way to add features incrementally. |
Sweet, look forward to checking it out. |
I also have a few new ideas for improvements that I've been working on. I'll throw it into an issue and tag you. Think the process works a bit better when things are first fleshed out and discussed in issues and then they're converted to code and submitted as pull requests. Take a look at these schema discussions for example: https://github.com/jsonresume/resume-schema/issues. |
Anyway, back to the suggestion. I really like the idea of a fingerprints array. As you mentioned at an earlier date, having an entire section for PGP probably doesn't make as much sense as something more generic, like a section for various keys (including PGP and OTR keys) that the user is in control of. I thought the section could be called "keychain." Here's an example of the format: {
"keychain": [
{ "type": "otr", "fingerprint": "756CE84F90ABDE840555F4E2E0B2ACB1297F9E65" },
{ "type": "pgp", "fingerprint": "DDA1CF3D659064044EC99354429E1A42A93EA312",
"publicKey": "-----BEGIN PGP PUBLIC KEY BLOCK-----\nVersion: GnuPG..." },
{ "type": "ssl", "fingerprint": "C1956DC8A7DFB2A5A56934DA09778E3A11023358" },
{ "type": "bitcoin", "address": "1FbynFXB1C6jSAQZivucAnzAm9N7GxURYa",
"publicKey": "083a0518062cc3c5ad48501c60aa06059785449f579a256ed2f1a5e781a109d978e54b20fb43b6e90dc91d8f9898665b969e122df6e1d1e5ce06c790f618a2c4"},
]
} You'll notice that I even included a Bitcoin public key in there (which could also be referred to as an ecdsa public key). These keys could be used for identifying users in various ways, including
|
Right now you're calling this a "user" schema, but I think it can be a more general "identity" schema. People have identities, but so do organizations and businesses. Imagine a business identity putting their name, and url, and SSL cert fingerprint in one of these entries. Oops... I think I just destroyed the CA industry. |
Yeah you're right. Could even have a Updating to include SSL. |
For space reasons, I'd leave public key distribution out of this spec. There are many ways to distribute public keys - that's the easy part of the problem. Generating a secure mapping between logical identities and public keys is the hard part. You can upload your public key anywhere, maybe even to Namecoin under another namespace, and provide a like to it in the URL section. |
Agreed, linking to URLs is often better. That said, some people will want to include their full keys and I feel that the protocol should support that option. URL references are already supported by v0.2. For example, my PGP data right now is: {
"pgp": {
"url": "https://s3.amazonaws.com/97p/pubkey.asc",
"fingerprint": "DDA1CF3D659064044EC99354429E1A42A93EA312"
}
} |
Much has changed since this discussion. If you would like to reopen the issue please do so on one of these three repos: Closing as stale. |
Quoted suggestion from @justusranvier:
Fingerprint
The fingerprints array is used to associate public keys with Namecoin identities.
Defined types of the Fingerprints array:
Defined attributes for the Fingerprints array:
none
The text was updated successfully, but these errors were encountered: