Re: [Fenfire-dev] Storm: Creating a Pointer Signature

[Benja Fallenstein]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Matti Katila wrote:
| The question is how to create these owner reference blocks?

You use org.nongnu.storm.references.PointerSigner(
~    IndexedPool pool, BlockId identificationInfo).

If you mean how to create one from the command line, there is no utility
for it yet, which is one of the things that block a Storm release. It
*should* be trivial to write, though.

The 'identificationInfo' is the id of a block that contains information
that allows a human to verify the identity of the pointer owner through
out-of-bounds means. For example, a <text/plain> block containing name,
date of birth, street address, telephone #, and e-mail address would
work. There is no standard format for it at this point.

The reason for having this block is the 'master plan' for avoiding
problems when a private key becomes exposed. The idea is to have some
sort of central registry. This registry needs to verify the identity of
the key owner before assigning a new key.

| What it
| consist of?

- - the identification info
- - the initial public key
- - any other triples you like :)

Normally the first two.

| Is there restrictions with the used public key, e.g., it must
| be RSA or DSA and 1024 bits?

It must be DSA and I guess it should have Java's standard key size, I
don't know what that is.

- - Benja
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org

iD8DBQFAtdvJUvR5J6wSKPMRAmBRAJ4vbHDzXyJJNZOBTrJGMXqu70NZFACdF8K5
Go++yR4d2X5r2kNlLIVVRGs=
=rY4l
-----END PGP SIGNATURE-----