[messaging] Secure OpenPGP Key Pair Synchronization via IMAP (RFC)

David Leon Gil coruus at gmail.com
Wed Apr 8 08:06:01 PDT 2015

Quite nice. I'd be inclined to support something like it. Strongly suggest,
however, that you specify either

- (1) some variant of Scrypt
- (2) one of the PHC R2 competitors Lyra2 or Catena.

If (1), I'd suggest Scrypt(hash=HChaCha20, kdf=Shake255)

I'll -- in the next couple of weeks -- be making available a PNaCl
implementation of this. It can also be implemented efficiently in JS,
though the only published correct implementation of Shake I know of
compiles coruus/keccak-tiny via Emscripten...

If (2), I'd suggest Lyra2(BlaCAL): it further increases hardware costs
(multipliers have a large gate count).

- David
On Wed, Apr 8, 2015 at 5:38 AM Tankred Hase <tankred at whiteout.io> wrote:

> Hi there,
> we've updated our private key synchronization protocol. The new
> version was developed together with Cure53 and it's much simpler than
> the old protocol:
> https://blog.whiteout.io/2015/04/08/secure-pgp-key-sync-a-proposal-contd/
> The Enigmail developers have also expressed interest, so we would be
> open to standardize it as an RFC if enough vendors back it.
> Thanks for any feedback.
> Kind regards,
> Tankred
> --
> Whiteout Networks GmbH c/o Werk1
> Grafinger Str. 6
> D-81671 München
> Geschäftsführer: Oliver Gajek
> RG München HRB 204479
> _______________________________________________
> Messaging mailing list
> Messaging at moderncrypto.org
> https://moderncrypto.org/mailman/listinfo/messaging
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://moderncrypto.org/mail-archive/messaging/attachments/20150408/54e4ca28/attachment.html>

More information about the Messaging mailing list