Copyright ©2005W3C®(MIT,ERCIM,Keio), All Rights Reserved. W3Cliability,trademark anddocument use rules apply.
The XML Key Management Specification (XKMS 2.0) [XKMS] aims at providing a PKI independent interfaceto key management. XKMS services comprise discovery and validation ofkeys as well as support for certain aspects of the key life cyclemanagement, including registration, reissuance and revocation.
XKMS employs XML Signature [XMLSIG] for thepurpose of providing message security in the form of authenticationand integrity. In addition, XKMS is based on the use ofthe<ds:KeyInfo> element as a means of transporting keyinformation used as templates for the various operations itspecifies.
This technical note addresses some of the issues related to the use of XKMS inconjunction with PGP [PGP].
This section describes the status of this document at the time of itspublication. Other documents may supersede this document. A list of currentW3C publications and the latest revision of this technical report can befound in theW3C technicalreports index at http://www.w3.org/TR/.
This is the 19 December 2005 Working GroupNote for "Using XKMS with PGP". This document was developed by theXML Key ManagementWorking Group. It is being published as the XKMS Working Groupconcludes, and has no normative status.
This document is a Working Group Note made available by W3C fordiscussion only. Publication of this Note by W3C does not implyendorsement by W3C, including the Team and Membership. No W3Cresources were, are, or will be allocated to the issues addressed bythis W3C Working Group Note.
While the XKMS Working Group has completed its chartered workitems, we expect that the mailing list will remain active for sometime. Please send comments about this document towww-xkms@w3.org (withpublic archive).
As of this publication, the Working Group does not expect this document tobecome a W3C Recommendation, and therefore it has no associatedW3CPatent Policy licensing obligations. If this expectation changes, theWorking Group will have an opportunity to fulfill the associated patentpolicy requirements with respect to a future draft.
This document was developed under no patent policy.
Publication as a Working Group Note does not imply endorsement bythe W3C Membership. This is a draft document and may be updated,replaced or obsoleted by other documents at any time. It isinappropriate to cite this document as other than work inprogress.
1.Introduction
2.PGP Packet types for <ds:PGPKeyPacket>
3.Issues related to using ElGamal with XMLSIG and XKMS
4.XKMS with PGP usage scenarios
5.XKMS and implications of the PGP Design
6.References
7.Acknowledgments
1.Introduction
2.PGP Packet types for <ds:PGPKeyPacket>
3.Issues related to using ElGamal with XMLSIG and XKMS
3.1ElGamal syntax for <ds:KeyValue>
3.2ElGamal syntax for <xkms:PrivateKey>
4.XKMS with PGP usage scenarios
4.1Scenario 1: Locate Request, single PGPKeyPacket
4.2Scenario 2: Locate Request, multiple PGPKeyPackets
4.3Scenario 3: Locate Request, PGPData from PGPKeyID
4.4Scenario 4: Locate Request, KeyValue from PGPKeyPacket
4.5Scenario 5: Locate Request, KeyValue's from PGPKeyPacket with multiple sub-keys
4.6Scenario 6: Validate Request, single PGPKeyPacket
4.7Scenario 7: Validate Request, valid key
4.8Scenario 8: Validate Request, expired key
4.9Scenario 9: Validate Request, revoked key
4.10Scenario 10: Register Request
4.11Scenario 11: Reissue Request
4.12Scenario 12: Revoke Request
5.XKMS and implications of the PGP Design
5.1Trust model
5.2Registration of PGP Subkeys
5.3PGP Version 4 Signature Subpackets
6.References
7.Acknowledgments
One of XKMS main objectives is to facilitate the use of XMLSignature [XMLSIG] and XML Encryption [XMLENC] without mandating the use of any onespecific public key infrastructure (PKI). While PKI independent, XKMSrelies on vocabulary defined in XMLSIG for marking up artifactspertaining to PKIX/X.509, PGP and SPKI. This W3C technical note isconcerned with PGP artifacts and their usage in XKMS.
Section 4.4.5 of the XML Digital Signature [XMLSIG] Specification defines the<ds:PGPData> element for conveying information related to PGPpublic key pairs and signatures on such keys. This Section has severaldeficiencies that were clearly noticed during the XKMSInteroperability tests [XKMSCRIR, Issue 332-tl2]. Specifically, Section 4.4.5:
ds:KeyInfo/ds:PGPData/ds:PGPKeyPacket;<ds:PGPKeyPacket>.The objectives of this document are to:
ds:KeyInfo/ds:PGPData/ds:PGPKeyPacket;It is not our intention to speculate over, or try to determine how meaningful or suitable certain scenarios are for PGP - this note simply discusses the support of primititves and mechanisms provided by XKMS and its underpinning technologies.
We will only make reference to and distinguish between thedifferent versions of PGP documented in [PGP] whenrequired by the context.
<ds:PGPKeyPacket><ds:PGPKeyPacket>element contains a Key Material Packet as defined in [PGP, Section 5.5]. However,the text does not constrain the valid Key Material Packet types to those suitable for use withina<ds:KeyInfo> element. Specifically, among the packet types defined in[PGP, Section 5.5] only Public Key Packets and Public Subkey Packets must beused in a<ds:PGPKeyPacket> element.Moreover, in order to be able to establish trust in a key, additional packet types are typicallyrequired. These additional packet types are UserID packets[PGP, 5.11 User ID Packet], Signature packets [PGP, 5.2.1.Signature Types] and, for PGP version 4,Signature Subpackets [PGP, 5.2.3.1 Signature Subpacket Specification].
Signature packet types are further constrained to:
Consequently, we find that [PGP, Sections 10.1], entitledTransferable Public Keys, gives better recommendationsthan [PGP, Sections 5.5] on how to compose thecontent of a<ds:PGPKeyPacket> element. All of these recommendationscan be applied straightforward, with the exception of the last Sectionof [PGP, Sections 10.1] which states that:
"Transferable public key packet sequences may be concatenated to allow transferring multiple public keys in one operation."
This conflicts with the requirement stated in [XMLSIG, Section 4.4] that multiple declarationswithin<ds:KeyInfo> must refer to the same key and should therefore not befollowed.
N.B.: While we don't find the element name<ds:PGPKeyPacket> optimally descriptive for itsintended purpose, it is not our intention to propose an alternativename, nor is it our intention to introduce additional PGP specificmarkup intended to carry additional PGP artifacts.
The following XML signature illustrates the use of a single<ds:PGPKeyPacket> element carrying the signatureverification key:
<?xml version="1.0" encoding="UTF-8"?><ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <ds:SignedInfo> <ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#" /> <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1" /> <ds:Reference URI="#object"> <ds:Transforms> <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#" /> </ds:Transforms> <ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" /> <ds:DigestValue>i4ZUxPo3KaS0HVln/lSVjphFwp4=</ds:DigestValue> </ds:Reference> </ds:SignedInfo> <ds:SignatureValue> w0PGjKuTmwaIosNQL3mrzETp+EcM8CKWJAByhLuXf6P9kfOx2JjHLP6rGXKiEfpA kdgsFvWAVUUcae2aqSLlpRdj+pQGjKykujslBhdqhO7CsOkCzOKo3gkALjaZi70/ WwStUiYLwufmlbsvY9cF/4g59BSbFu1yvWhwtASPFKU= </ds:SignatureValue> <ds:KeyInfo> <ds:PGPData> <ds:PGPKeyID> O3owQUSlko4= </ds:PGPKeyID> <ds:PGPKeyPacket>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 </ds:PGPKeyPacket> </ds:PGPData> </ds:KeyInfo> <ds:Object>this is some text</ds:Object></ds:Signature>
The following XML signature illustrates the use of two<ds:PGPKeyPacket> elements. The first one carries thesignature verification key, while the second one holds the key thatcertifies the signature verification key:
<?xml version="1.0" encoding="UTF-8"?><env:Envelope xmlns:env="http://example.com/envelope"> <ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <ds:SignedInfo> <ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#" /> <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1" /> <ds:Reference URI="#envelope"> <ds:Transforms> <ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature" /> <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#" /> </ds:Transforms> <ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" /> <ds:DigestValue>kszkAzzcRdmyOj9CF+rBzNCW2rk=</ds:DigestValue> </ds:Reference> </ds:SignedInfo> <ds:SignatureValue> VpiEj708CwkWrq6OOka5NbdI6NJalkM/k9DlyNq6tox11wEkDR3pjyqenO+IC93e VSg5o8PjGBwEOyY/GyzeGle8kRECcs1ZL8IPGVltQJQV3xkCGSOANcMSAhGCei/m lMWEa7PUI47CUk6Hz+0t0UHzOYaedXVXsimAj8lyqDg= </ds:SignatureValue> <ds:KeyInfo> <ds:PGPData> <ds:PGPKeyID> O3owQUSlko4= </ds:PGPKeyID> <ds:PGPKeyPacket> mI0EQx27fQMEAM3Hfx3yjzYol3SoE8PVl+CErHVPxDZJXtamrX52V7iVZQkvhoE0 uW5T7VObmKtIbzBQxOQ9oCjhoEN8QG9p0jX25xyDEZH8MRJPZ5+GFb/mEhRoLp91 WN+HemA7XOouJKwme5qAKAX36cXjHgqAALu7O5bT7I0/9n0Omv5x6O3FcvtFtbv5 igO+Y3wxKEAuR45zmhhIIQgkWCtfDlFm0wc+yaWXgsEMRn9q1/ua6e8VS7/7S4QM qVaInAQQAwIAEAUCQyScTgkQAfTyJlFel/UAAONKA/0b/euhEaUw+eeVYcyrQa1d HTmWc8U53LqbuPMLZ59PkP1FiHcu5N5KD3xk/Xc14o8sP8BHd91TJnaM6sKxVEs1 MfP4cah7v6P8bXvk7UXcgKMh8zJlPxmOXkqaw+a7sGGxEDS4Q7nse0ZHABEBAAG0 EWFsaWNlQGV4YW1wbGUuY29tiK4EEAMCACIFAkMi228JEDt6MEFEpZKOAhsDAhYC AhUCAgsCAhkBAgcBAAD5BwP+MFhUsd43DS1t2/iUZKURua34nrv0erZFn5fMyu0z 580RR81Wol5sjISV89uuXm09NVNqDBNqi+vemjB66NJGLjoviZVGDzgi5vV7wF5q rdbtSp38HtJte1FMQHeScriNBEMdu4ACBACu1wQ0llewBTewtZJvo4I8RZsvXjTO 6wzotWhK+W10a/khxG7vBWymhMU5hXne/9O7vE7J7qT9j1tkdzNUQXGPOUb6b6kG GeicAXJ17qL0ActcSlnDWwA0P94PGBIpFowJUu0txOBdQHX3h/hOk+4PtWLXob6q hjlR+uS+a2AuaQARAQABiJwEGAMCABAFAkMi228JEDt6MEFEpZKOAAAN0gQAlgws XkSm2dBwCFaXMnHxdnCTLqZKCfCBd332w6G6S4tCoVlFW6MKxhwn2IyF8VgIyVl6 bTjnrT0E78FlWW9JX3JZje6a4nhus1TqEx12LfIYyX//T/2gnbiic+FqigE3N91N 0Hyixc2aGtAT7hCrMS+DTgvPHb2kLoR1+PMP/Fg= </ds:PGPKeyPacket> </ds:PGPData> <ds:PGPData> <ds:PGPKeyID> AfTyJlFel/U= </ds:PGPKeyID> <ds:PGPKeyPacket> mI0EQx276AMEAObgi9iTkPANSS8Ntw/WwloeAlHsEsxMrNOFAp1QuX3Y320G/BIC gKki1WMKcBuRkfz6TPIET396V8GZwLHQ8xUJlVn2lcq1lN9vfy24UwqC/rQuQAL+ KaCR5vakUNSt92sjZDuG+q5T6OfHMm5n+jBVBuVBcMDpnFPANaG/9ClvABEBAAG0 D2JvYkBleGFtcGxlLmNvbYiuBBADAgAiBQJDIttwCRAB9PImUV6X9QIbAwIWAgIV AgILAgIZAQIHAQAAndUD/Am0fO3cnKf66IgPtRxar2jQ2hLy9u9kdHAQ+nlaMx8H icnW56Xn5liMyPLkV47FEOQTUTiG1E0oNQRhpQGo2NWbBVSJPWXN0kkHGmtzV93M W4tabN2mV7VIQTA6s7EHiM9+XQtS07b5vsHyv446CyjSrnlnA26+DsdZDR1e/n7L iJwEEAMCABAFAkMknE4JEDt6MEFEpZKOAABhVAQAkLC6oGwFPWlIk0gJaTRgP+5k VHYKC6pwu7NtfjArWn6xEpP0v3nkglMaK7PJWFc0R8tMpgqDuIs4Iry/dyQVoeg0 uxgASPL3T+mPAGHLOnVS75lrXeIPex/u6g2W/iwKJxFlRFxvMwO0THY+SVBNVzt8 Md9Ve6xcMhRWFaiAvBK4jQRDHbvrAgQAiI0YiXGT3QeItzuEXUWnU8t884mnRvbK Wv8DWEI8qWxrByWTXk0YOyVJ65R7JEm+6oP1+sovPW1AP9mBUmdgT3L1sx3/fmIE bmrFxV+fhhl20InEDFOiCFDsQw/grUcZ/nhOeZ0GIfwOODpNJXANwqcKNE47MvGq 0JxAgg/oxqEAEQEAAYicBBgDAgAQBQJDIttwCRAB9PImUV6X9QAA1PID/RaKylKM 3ypFVRBOY3SxEiuUhpN+5N8qnSl3k4n0+I5RsOS8JSrWgPElu7hx2zjRHJCtN1y6 /BUtcr5VHKjw8VUdlRDrpPsSdoFKjQoh4RidOwKRELAcT4RpITYp7EdPGSB6IQ1d Uuxgw291wiJcIGwoxteo+MZuLH/jOb90zQCM </ds:PGPKeyPacket> </ds:PGPData> </ds:KeyInfo> </ds:Signature></env:Envelope>
RFC2440 [PGP] supports the asymmetric ciphersRSA, DSA, and ElGamal. XML Signature, on the other hand, only definesmarkup for carrying key values pertaining to the RSA and DSA algorithms.
An XKMS service exposed to this incompatibility has little choice but to returna general result code pair such asResultMajorhttp://www.w3.org/2002/03/xkms#{Sender,Receiver} andResultMinorhttp://www.w3.org/2002/03/xkms#Failure.
N.B: Note that the inability to act on a request involvingan unsupported algorithm should ideally be backed up by the existenceof an XKMSResultMinorEnum enumeration value such ashttp://www.w3.org/2002/03/xkms#UnsupportedAlgorithm, howeversuch a code is not specified in the current XKMS 2.0 Specification.
While some usage scenarios may be satisfied by the XKMS service simply tunneling the<ds:PGPKeyPacket>elements containing an ElGamal key, this does not provide a complete solution.In the following sub sections we suggest how full ElGamal support could be added to XMLSIG and XKMSrespectively. Note that the schema fragments deliberatly omit the definition of the namespaces for theprefixes NS1 and NS2.
<ds:KeyValue>XMLSIG, and therefore XKMS, are limited to representing key values for RSA and DSA only.As a result, an XKMS service cannot return a key value for a request involving a<ds:PGPKeyPacket> that contains an ElGamal public key.
As an ElGamal public key (when in transit between PGP awareentities) is defined by the values P(rime), G(enerator) and Y (Public), asuitable definition of an ElGamal key value may be:
<element name="ElGamalKeyValue" type="NS1:ElGamalKeyValueType"/> <complexType name="ElGamalKeyValueType"> <sequence> <element name="P" type="ds:CryptoBinary"/> <element name="Generator" type="ds:CryptoBinary"/> <element name="Public" type="ds:CryptoBinary"/> </sequence> </complexType>
<xkms:PrivateKey>XKMS supports service generation of key pairs pertaining to public key encryption algorithms. Whena service generates such a key pair, the private key parameters are returned to the client as encrypteddata in an<xkms:PrivateKey> element.
The only key pair syntax currently defined by the XKMS 2.0specification is that for an<xkms:RSAKeyPair>. Wepropose the following definition for an ElGamal key pair:
<element name="ElGamalKeyPair" type="NS2:ElGamalKeyPairType"/> <complexType name="ElGamalKeyPairType"> <sequence> <element name="P" type="ds:CryptoBinary"/> <element name="Generator" type="ds:CryptoBinary"/> <element name="Public" type="ds:CryptoBinary"/> <element name="X" type="ds:CryptoBinary"/> </sequence> </complexType>
In the precedent definition,P,Generator, andPublic are as defined in Section3.1;X is the private key.
This section provides selected usage scenarios involving XKMS andPGP, accompanied by sample request/result messages. The messages arebased on interactions between an XKMS Client, an XKMS Service, and aPGP Key Server (see Figure 1).
Figure 1: Interactions between an XKMS client, an XKMS service and a PGP Key Server
In order to conserve space, the messages are not signed unlessrequired by the XKMS specification. A zip archive containing thecomplete messages and related PGP keys is available fordownload. The content of thisarchive is also available online in a dedicatedsamples directory
All messages pertain to synchronous exchanges. The keyholders, inthe scenarios, use keys pertaining to the RSA algorithm. The followingsub-sections describe the individual usage scenarios.
Alice, who has PGP aware software, requests a PGP artifact for Carol expressing specificinterest in her signature key. By including the<xkms:RespondWith> valuehttp://www.w3.org/2002/03/xkms#PGP, Alice indicates that the XKMS service should return a single PGPartifact.
<?xml version="1.0" encoding="utf-8"?><km:LocateRequest Service="http://markupsecurity.com:4080/xkms/service/soap12" xmlns:km="http://www.w3.org/2002/03/xkms#" xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <km:RespondWith>http://www.w3.org/2002/03/xkms#PGP</km:RespondWith> <km:QueryKeyBinding> <km:KeyUsage>http://www.w3.org/2002/03/xkms#Signature</km:KeyUsage> <km:UseKeyWith Application="urn:ietf:rfc:2440" Identifier="carol@example.com" /> </km:QueryKeyBinding></km:LocateRequest><?xml version="1.0" encoding="utf-8"?><km:LocateResult Service="http://markupsecurity.com:4080/xkms/service/soap12" ResultMajor="http://www.w3.org/2002/03/xkms#Success" RequestId="I37cee20869ede2b91ef6d0fe8b408d48" xmlns:km="http://www.w3.org/2002/03/xkms#" xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <km:UnverifiedKeyBinding> <ds:KeyInfo> <ds:PGPData> <ds:PGPKeyID> CE0HiNZPXl8= </ds:PGPKeyID> <ds:PGPKeyPacket> mI0EQx3hFQMEAKMt018bl9evtYd+xCgKfdbeXqiOSLQcLBA//gp3otW9AZVC0Tdq py9S46fPtRuasGFaKhqnXwBtbnrdvCR3YWjkimqk32FuKtxnSBXi2yssp5yycRye iRPC8CBEyJeLDHxjIrpltQ2oJ6toQ5nIh9D7x9xr+BltIZ+5nVAgoWCLABEBAAG0 EWNhcm9sQGV4YW1wbGUuY29tiK4EEAMCACIFAkMi23AJEAhNB4jWT15fAhsDAhYC AhUCAgsCAhkBAgcBAABp7AP/QoL/WVEpuxxSD/LJA3QjERnRjuYKS4L0/Ulb8gVa odMl3xsl100fpqF5ISUWaQZrUFPFSyG0781FZvmvcFlbomutCnNR2ugRg0rIjjib araXuxbdWDluNfNbwDkdQy9fhRz7/r7AudjpwFcoGfVjdPZ8graZ1kXZXvkZuPs8 +RmInAQQAwIAEAUCQyScTgkQAfTyJlFel/UAAHyPBACwAYWGqzO8N/+zhJjEsdnu PoGRbiaS6v7IynAqAlUMz/c7+Z5qsLPFjHUaxvAc9QtTNfte3ql9THBpxDRxB3/v Y21E6kIK9qHIUW6+4AfKVNPcwqj/p1U8W5s0z92IQZarbYQC7hJExwvk1ig7ZQ6Y /AN7/VctgdqMPEFcVNwUFbiNBEMd4RgCBACTwYI/1LNewEamlSzmi29v5XLBjXHV erc++BHiS+LZG+SY4BIKISA8Qa9lWaOub+66EuVx6IAupdJCpyEBDcXccmnVnflH aweOQxTHHGpfD4ndEbR9KN8uS9wT5MIPBHCxTb9eR03qVZuYxABwLfXqehvOnzSZ H4IDI62beGcf3wARAQABiJwEGAMCABAFAkMi23AJEAhNB4jWT15fAAC5lgP+LKWX uBE2cpJPRY28aBPHlcIfe9nkDWWH1FYHsHoa2yi4aoqmXvWC2By2aVUE5CXFLTbP 7grwpfqZ6OnpnRvPrzMXfsupi40UJ/EIbkpUKxiZ7jZjgdnKCBlIFBf2W1fYl3/K S9TN303faMJeljwTBpGUcqUoZSmAnNuGnTxYc5Y= </ds:PGPKeyPacket> </ds:PGPData> </ds:KeyInfo> <km:KeyUsage>http://www.w3.org/2002/03/xkms#Signature</km:KeyUsage> <km:UseKeyWith Application="urn:ietf:rfc:2440" Identifier="carol@example.com" /> </km:UnverifiedKeyBinding></km:LocateResult>
Alice, who has PGP aware software, requests a PGP artifact for Carol expressing specificinterest in her signature key. By including the<xkms:RespondWith> valuehttp://www.w3.org/2002/03/xkms#PGPWeb, Alice indicates that she is prepared to receivemultiple<ds:PGPKeyPacket> elements in the response. As a result the XKMS service locates the artifacts pertainingnot only to Carol but also to each signer encountered.
<?xml version="1.0" encoding="utf-8"?><km:LocateRequest Service="http://markupsecurity.com:4080/xkms/service/soap12" xmlns:km="http://www.w3.org/2002/03/xkms#" xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <km:RespondWith>http://www.w3.org/2002/03/xkms#PGPWeb</km:RespondWith> <km:QueryKeyBinding> <km:KeyUsage>http://www.w3.org/2002/03/xkms#Signature</km:KeyUsage> <km:UseKeyWith Application="urn:ietf:rfc:2440" Identifier="carol@example.com" /> </km:QueryKeyBinding></km:LocateRequest><?xml version="1.0" encoding="utf-8"?><km:LocateResult Service="http://markupsecurity.com:4080/xkms/service/soap12" ResultMajor="http://www.w3.org/2002/03/xkms#Success" RequestId="I036c2399c5c14e2b64900a0213910220" xmlns:km="http://www.w3.org/2002/03/xkms#" xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <km:UnverifiedKeyBinding> <ds:KeyInfo> <ds:PGPData> <ds:PGPKeyID> CE0HiNZPXl8= </ds:PGPKeyID> <ds:PGPKeyPacket> mI0EQx3hFQMEAKMt018bl9evtYd+xCgKfdbeXqiOSLQcLBA//gp3otW9AZVC0Tdq py9S46fPtRuasGFaKhqnXwBtbnrdvCR3YWjkimqk32FuKtxnSBXi2yssp5yycRye iRPC8CBEyJeLDHxjIrpltQ2oJ6toQ5nIh9D7x9xr+BltIZ+5nVAgoWCLABEBAAG0 EWNhcm9sQGV4YW1wbGUuY29tiK4EEAMCACIFAkMi23AJEAhNB4jWT15fAhsDAhYC AhUCAgsCAhkBAgcBAABp7AP/QoL/WVEpuxxSD/LJA3QjERnRjuYKS4L0/Ulb8gVa odMl3xsl100fpqF5ISUWaQZrUFPFSyG0781FZvmvcFlbomutCnNR2ugRg0rIjjib araXuxbdWDluNfNbwDkdQy9fhRz7/r7AudjpwFcoGfVjdPZ8graZ1kXZXvkZuPs8 +RmInAQQAwIAEAUCQyScTgkQAfTyJlFel/UAAHyPBACwAYWGqzO8N/+zhJjEsdnu PoGRbiaS6v7IynAqAlUMz/c7+Z5qsLPFjHUaxvAc9QtTNfte3ql9THBpxDRxB3/v Y21E6kIK9qHIUW6+4AfKVNPcwqj/p1U8W5s0z92IQZarbYQC7hJExwvk1ig7ZQ6Y /AN7/VctgdqMPEFcVNwUFbiNBEMd4RgCBACTwYI/1LNewEamlSzmi29v5XLBjXHV erc++BHiS+LZG+SY4BIKISA8Qa9lWaOub+66EuVx6IAupdJCpyEBDcXccmnVnflH aweOQxTHHGpfD4ndEbR9KN8uS9wT5MIPBHCxTb9eR03qVZuYxABwLfXqehvOnzSZ H4IDI62beGcf3wARAQABiJwEGAMCABAFAkMi23AJEAhNB4jWT15fAAC5lgP+LKWX uBE2cpJPRY28aBPHlcIfe9nkDWWH1FYHsHoa2yi4aoqmXvWC2By2aVUE5CXFLTbP 7grwpfqZ6OnpnRvPrzMXfsupi40UJ/EIbkpUKxiZ7jZjgdnKCBlIFBf2W1fYl3/K S9TN303faMJeljwTBpGUcqUoZSmAnNuGnTxYc5Y= </ds:PGPKeyPacket> </ds:PGPData> <ds:PGPData> <ds:PGPKeyID> AfTyJlFel/U= </ds:PGPKeyID> <ds:PGPKeyPacket> mI0EQx276AMEAObgi9iTkPANSS8Ntw/WwloeAlHsEsxMrNOFAp1QuX3Y320G/BIC gKki1WMKcBuRkfz6TPIET396V8GZwLHQ8xUJlVn2lcq1lN9vfy24UwqC/rQuQAL+ KaCR5vakUNSt92sjZDuG+q5T6OfHMm5n+jBVBuVBcMDpnFPANaG/9ClvABEBAAG0 D2JvYkBleGFtcGxlLmNvbYiuBBADAgAiBQJDIttwCRAB9PImUV6X9QIbAwIWAgIV AgILAgIZAQIHAQAAndUD/Am0fO3cnKf66IgPtRxar2jQ2hLy9u9kdHAQ+nlaMx8H icnW56Xn5liMyPLkV47FEOQTUTiG1E0oNQRhpQGo2NWbBVSJPWXN0kkHGmtzV93M W4tabN2mV7VIQTA6s7EHiM9+XQtS07b5vsHyv446CyjSrnlnA26+DsdZDR1e/n7L iJwEEAMCABAFAkMknE4JEDt6MEFEpZKOAABhVAQAkLC6oGwFPWlIk0gJaTRgP+5k VHYKC6pwu7NtfjArWn6xEpP0v3nkglMaK7PJWFc0R8tMpgqDuIs4Iry/dyQVoeg0 uxgASPL3T+mPAGHLOnVS75lrXeIPex/u6g2W/iwKJxFlRFxvMwO0THY+SVBNVzt8 Md9Ve6xcMhRWFaiAvBK4jQRDHbvrAgQAiI0YiXGT3QeItzuEXUWnU8t884mnRvbK Wv8DWEI8qWxrByWTXk0YOyVJ65R7JEm+6oP1+sovPW1AP9mBUmdgT3L1sx3/fmIE bmrFxV+fhhl20InEDFOiCFDsQw/grUcZ/nhOeZ0GIfwOODpNJXANwqcKNE47MvGq 0JxAgg/oxqEAEQEAAYicBBgDAgAQBQJDIttwCRAB9PImUV6X9QAA1PID/RaKylKM 3ypFVRBOY3SxEiuUhpN+5N8qnSl3k4n0+I5RsOS8JSrWgPElu7hx2zjRHJCtN1y6 /BUtcr5VHKjw8VUdlRDrpPsSdoFKjQoh4RidOwKRELAcT4RpITYp7EdPGSB6IQ1d Uuxgw291wiJcIGwoxteo+MZuLH/jOb90zQCM </ds:PGPKeyPacket> </ds:PGPData> <ds:PGPData> <ds:PGPKeyID> O3owQUSlko4= </ds:PGPKeyID> <ds:PGPKeyPacket> mI0EQx27fQMEAM3Hfx3yjzYol3SoE8PVl+CErHVPxDZJXtamrX52V7iVZQkvhoE0 uW5T7VObmKtIbzBQxOQ9oCjhoEN8QG9p0jX25xyDEZH8MRJPZ5+GFb/mEhRoLp91 MfP4cah7v6P8bXvk7UXcgKMh8zJlPxmOXkqaw+a7sGGxEDS4Q7nse0ZHABEBAAG0 EWFsaWNlQGV4YW1wbGUuY29tiK4EEAMCACIFAkMi228JEDt6MEFEpZKOAhsDAhYC AhUCAgsCAhkBAgcBAAD5BwP+MFhUsd43DS1t2/iUZKURua34nrv0erZFn5fMyu0z WN+HemA7XOouJKwme5qAKAX36cXjHgqAALu7O5bT7I0/9n0Omv5x6O3FcvtFtbv5 igO+Y3wxKEAuR45zmhhIIQgkWCtfDlFm0wc+yaWXgsEMRn9q1/ua6e8VS7/7S4QM qVaInAQQAwIAEAUCQyScTgkQAfTyJlFel/UAAONKA/0b/euhEaUw+eeVYcyrQa1d HTmWc8U53LqbuPMLZ59PkP1FiHcu5N5KD3xk/Xc14o8sP8BHd91TJnaM6sKxVEs1 580RR81Wol5sjISV89uuXm09NVNqDBNqi+vemjB66NJGLjoviZVGDzgi5vV7wF5q rdbtSp38HtJte1FMQHeScriNBEMdu4ACBACu1wQ0llewBTewtZJvo4I8RZsvXjTO 6wzotWhK+W10a/khxG7vBWymhMU5hXne/9O7vE7J7qT9j1tkdzNUQXGPOUb6b6kG GeicAXJ17qL0ActcSlnDWwA0P94PGBIpFowJUu0txOBdQHX3h/hOk+4PtWLXob6q hjlR+uS+a2AuaQARAQABiJwEGAMCABAFAkMi228JEDt6MEFEpZKOAAAN0gQAlgws XkSm2dBwCFaXMnHxdnCTLqZKCfCBd332w6G6S4tCoVlFW6MKxhwn2IyF8VgIyVl6 bTjnrT0E78FlWW9JX3JZje6a4nhus1TqEx12LfIYyX//T/2gnbiic+FqigE3N91N 0Hyixc2aGtAT7hCrMS+DTgvPHb2kLoR1+PMP/Fg= </ds:PGPKeyPacket> </ds:PGPData> </ds:KeyInfo> <km:KeyUsage>http://www.w3.org/2002/03/xkms#Signature</km:KeyUsage> <km:UseKeyWith Application="urn:ietf:rfc:2440" Identifier="carol@example.com" /> </km:UnverifiedKeyBinding></km:LocateResult>
Carol, who has PGP aware software, requests a PGP artifact corresponding to the supplied<ds:PGPKeyID>.
<?xml version="1.0" encoding="utf-8"?><km:LocateRequest Service="http://markupsecurity.com:4080/xkms/service/soap12" xmlns:km="http://www.w3.org/2002/03/xkms#" xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <km:RespondWith>http://www.w3.org/2002/03/xkms#PGP</km:RespondWith> <km:QueryKeyBinding> <ds:KeyInfo> <ds:PGPData> <ds:PGPKeyID>O3owQUSlko4==</ds:PGPKeyID> </ds:PGPData> </ds:KeyInfo> <km:KeyUsage>http://www.w3.org/2002/03/xkms#Signature</km:KeyUsage> <km:UseKeyWith Application="urn:ietf:rfc:2440" Identifier="alice@example.com" /> </km:QueryKeyBinding></km:LocateRequest><?xml version="1.0" encoding="utf-8"?><km:LocateResult Service="http://markupsecurity.com:4080/xkms/service/soap12" ResultMajor="http://www.w3.org/2002/03/xkms#Success" RequestId="If1793cf45fc363c26d808441fc1e5ccf" xmlns:km="http://www.w3.org/2002/03/xkms#" xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <km:UnverifiedKeyBinding> <ds:KeyInfo> <ds:PGPData> <ds:PGPKeyID> O3owQUSlko4== </ds:PGPKeyID> <ds:PGPKeyPacket> mI0EQx27fQMEAM3Hfx3yjzYol3SoE8PVl+CErHVPxDZJXtamrX52V7iVZQkvhoE0 uW5T7VObmKtIbzBQxOQ9oCjhoEN8QG9p0jX25xyDEZH8MRJPZ5+GFb/mEhRoLp91 MfP4cah7v6P8bXvk7UXcgKMh8zJlPxmOXkqaw+a7sGGxEDS4Q7nse0ZHABEBAAG0 EWFsaWNlQGV4YW1wbGUuY29tiK4EEAMCACIFAkMi228JEDt6MEFEpZKOAhsDAhYC AhUCAgsCAhkBAgcBAAD5BwP+MFhUsd43DS1t2/iUZKURua34nrv0erZFn5fMyu0z WN+HemA7XOouJKwme5qAKAX36cXjHgqAALu7O5bT7I0/9n0Omv5x6O3FcvtFtbv5 igO+Y3wxKEAuR45zmhhIIQgkWCtfDlFm0wc+yaWXgsEMRn9q1/ua6e8VS7/7S4QM qVa4jQRDHbuAAgQArtcENJZXsAU3sLWSb6OCPEWbL140zusM6LVoSvltdGv5IcRu 7wVspoTFOYV53v/Tu7xOye6k/Y9bZHczVEFxjzlG+m+pBhnonAFyde6i9AHLXEpZ w1sAND/eDxgSKRaMCVLtLcTgXUB194f4TpPuD7Vi16G+qoY5UfrkvmtgLmkAEQEA AYicBBgDAgAQBQJDIttvCRA7ejBBRKWSjgAADdIEAJYMLF5EptnQcAhWlzJx8XZw ky6mSgnwgXd99sOhukuLQqFZRVujCsYcJ9iMhfFYCMlZem045609BO/BZVlvSV9y WY3umuJ4brNU6hMddi3yGMl//0/9oJ24onPhaooBNzfdTdB8osXNmhrQE+4QqzEv g04Lzx29pC6EdfjzD/xY </ds:PGPKeyPacket> </ds:PGPData> </ds:KeyInfo> <km:KeyUsage>http://www.w3.org/2002/03/xkms#Signature</km:KeyUsage> <km:UseKeyWith Application="urn:ietf:rfc:2440" Identifier="alice@example.com" /> </km:UnverifiedKeyBinding></km:LocateResult>
Bob, who does not have PGP aware software, is in possession of a PGP artifact containing a signature verification key purportedly belonging to Carol. In order to verifya signature, Bob requests the XKMS service to extract and return the key value from the supplied<ds:PGPKeyPacket>.
<?xml version="1.0" encoding="utf-8"?><km:LocateRequest Service="http://markupsecurity.com:4080/xkms/service/soap12" xmlns:km="http://www.w3.org/2002/03/xkms#" xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <km:RespondWith>http://www.w3.org/2002/03/xkms#KeyValue</km:RespondWith> <km:QueryKeyBinding> <ds:KeyInfo> <ds:PGPData> <ds:PGPKeyPacket> mI0EQx3hFQMEAKMt018bl9evtYd+xCgKfdbeXqiOSLQcLBA//gp3otW9AZVC0Tdq py9S46fPtRuasGFaKhqnXwBtbnrdvCR3YWjkimqk32FuKtxnSBXi2yssp5yycRye iRPC8CBEyJeLDHxjIrpltQ2oJ6toQ5nIh9D7x9xr+BltIZ+5nVAgoWCLABEBAAG0 EWNhcm9sQGV4YW1wbGUuY29tiK4EEAMCACIFAkMi23AJEAhNB4jWT15fAhsDAhYC AhUCAgsCAhkBAgcBAABp7AP/QoL/WVEpuxxSD/LJA3QjERnRjuYKS4L0/Ulb8gVa odMl3xsl100fpqF5ISUWaQZrUFPFSyG0781FZvmvcFlbomutCnNR2ugRg0rIjjib araXuxbdWDluNfNbwDkdQy9fhRz7/r7AudjpwFcoGfVjdPZ8graZ1kXZXvkZuPs8 +RmInAQQAwIAEAUCQyScTgkQAfTyJlFel/UAAHyPBACwAYWGqzO8N/+zhJjEsdnu PoGRbiaS6v7IynAqAlUMz/c7+Z5qsLPFjHUaxvAc9QtTNfte3ql9THBpxDRxB3/v Y21E6kIK9qHIUW6+4AfKVNPcwqj/p1U8W5s0z92IQZarbYQC7hJExwvk1ig7ZQ6Y /AN7/VctgdqMPEFcVNwUFbiNBEMd4RgCBACTwYI/1LNewEamlSzmi29v5XLBjXHV erc++BHiS+LZG+SY4BIKISA8Qa9lWaOub+66EuVx6IAupdJCpyEBDcXccmnVnflH aweOQxTHHGpfD4ndEbR9KN8uS9wT5MIPBHCxTb9eR03qVZuYxABwLfXqehvOnzSZ H4IDI62beGcf3wARAQABiJwEGAMCABAFAkMi23AJEAhNB4jWT15fAAC5lgP+LKWX uBE2cpJPRY28aBPHlcIfe9nkDWWH1FYHsHoa2yi4aoqmXvWC2By2aVUE5CXFLTbP 7grwpfqZ6OnpnRvPrzMXfsupi40UJ/EIbkpUKxiZ7jZjgdnKCBlIFBf2W1fYl3/K S9TN303faMJeljwTBpGUcqUoZSmAnNuGnTxYc5Y= </ds:PGPKeyPacket> </ds:PGPData> </ds:KeyInfo> <km:KeyUsage>http://www.w3.org/2002/03/xkms#Signature</km:KeyUsage> <km:UseKeyWith Application="urn:ietf:rfc:2440" Identifier="carol@example.com"/> </km:QueryKeyBinding></km:LocateRequest><?xml version="1.0" encoding="utf-8"?><km:LocateResult Service="http://markupsecurity.com:4080/xkms/service/soap12" ResultMajor="http://www.w3.org/2002/03/xkms#Success" RequestId="I5ce64e4142923e31a48d15ca4117f276" xmlns:km="http://www.w3.org/2002/03/xkms#" xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <km:UnverifiedKeyBinding> <ds:KeyInfo> <ds:KeyValue> <ds:RSAKeyValue> <ds:Modulus> oy3TXxuX16+1h37EKAp91t5eqI5ItBwsED/+Cnei1b0BlULRN2qnL1Ljp8+1G5qw YVoqGqdfAG1uet28JHdhaOSKaqTfYW4q3GdIFeLbKyynnLJxHJ6JE8LwIETIl4sM fGMiumW1Dagnq2hDmciH0PvH3Gv4GW0hn7mdUCChYIs= </ds:Modulus> <ds:Exponent>AQAB</ds:Exponent> </ds:RSAKeyValue> </ds:KeyValue> </ds:KeyInfo> <km:KeyUsage>http://www.w3.org/2002/03/xkms#Signature</km:KeyUsage> <km:UseKeyWith Application="urn:ietf:rfc:2440" Identifier="carol@example.com" /> </km:UnverifiedKeyBinding></km:LocateResult>
Bob, who does not have PGP aware software, wants to encrypt amessage for Mary. He sends a request to the XKMS service specifyingthat he is only interested in the encryption keys. The XKMS serviceextracts all encryption keys found in the supplied<ds:PGPKeyPacket> and returns them to Bob.
<?xml version="1.0" encoding="utf-8"?><km:LocateRequest Service="http://markupsecurity.com:4080/xkms/service/soap12" xmlns:km="http://www.w3.org/2002/03/xkms#" xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <km:RespondWith>http://www.w3.org/2002/03/xkms#KeyValue</km:RespondWith> <km:QueryKeyBinding> <ds:KeyInfo> <ds:PGPData> <ds:PGPKeyPacket> mI0EQ2y6ewMEAMaP1BruldV2fU3ko3/mi5lH0qKGkrWgks+vB3ix3f+DRFynEOWs 3AcR2G5XL26oGdnLbTPyjwsm2GinMN/ewMk1Xzrc1g9+UVTJsKDnu6/FftqHZXF9 Gxlqmrhz2eB8VvCb+S9p5UXT+wWORqk0TByG1KPlYqlmV7gFY/TAyEYRABEBAAG0 EG1hcnlAZXhhbXBsZS5jb22ItAQQAwIAKAUCQ2y6ewkQKfPVUfJrwL4FCQHhM4AC GwMCFgICFQICCwICGQECBwEAAAljA/9vVYhk7vc3NZEoVpFbG68+VeF2Gc5dyI4e Jw4F5grK0QKZgxgvjLQrg0QpY4jV3k5568cqMy7e2FSyvUGH6I6t6QWwp57UtlAg fCw3gWxErdzKWBLZlbUoc6fANR1iwKIXpaP/XtDkSIER8o62UenozPzynfh67b/Y trBzuyifrriNBENsunsCBADH5WZWP4aEApC5eXs09fFQpzpdXZAdvV9lZ6Qi7boB VUy1cxGWpX6UokAmIExzC0vNfBJtw2XLQl/9GmORvdrCiMVfd2Qp7NHIkCXldmLh PoVTMF5HgG3miVhfnNxL8n8ucxnmR1x3rvqVpx8BxwdDKfS60RoYWca8CRgbnf6p +wARAQABiJwEGAMCABAFAkNsunsJECnz1VHya8C+AAC4gAQAwdFvoW8skqyp9HhK 2iWqkrJGMLZVo2Vy1yboDrsuhCQR7GqrovWxeI8S1luQhcxovzpPJ/8Jy8t+8Sge QMQFYt6O6evAC+7t0MXl5ELV1vxGwj0Pmp+rUpW5HUkWnjs60nfb5xvDCEeD23wN 6ALzg+WxcEjcgi0H1emjFZhLFAy4jQRDbLp7AgQAutPKzojkAQSaP2FF4YrAmu9e +GtTf9/Xi3c8z9kj29ZvgpPSI3TBUaMgoSUff9tAW7zE74zkFFqR/676HqJlm0Lx qH54Gdr5ZGeHgGaZiKJzzYn8rEzkIzR+FQxY/p4pAgDd86gMfxPKQEWDcTN01x8F UiyRaCUgcmMIh4mQ/O0AEQEAAYicBBgDAgAQBQJDbLp7CRAp89VR8mvAvgAA+KQD /iLdcN6fhaHiLgzkhaK6AAB8nL5aqfKTIJ0RWy52GHHZNcT4n/VbpVQPlCZsZrIG Li7HmtFKZ4O+zMC6tqFi2kAlB6TBCX31xibKVzXLwW1aiLYIpX3sA9g7lae37JzE T0wbzgvYo+usOI4Its1fEbxusaOorndSzYl1foQuDIn0 </ds:PGPKeyPacket> </ds:PGPData> </ds:KeyInfo> <km:KeyUsage>http://www.w3.org/2002/03/xkms#Encryption</km:KeyUsage> <km:UseKeyWith Application="urn:ietf:rfc:2440" Identifier="mary@example.com"/> </km:QueryKeyBinding></km:LocateRequest><?xml version="1.0" encoding="utf-8"?><km:LocateResult Service="http://markupsecurity.com:4080/xkms/service/soap12" ResultMajor="http://www.w3.org/2002/03/xkms#Success" RequestId="I685ffbf8e3fc626a9bcfe212a23dcffb" xmlns:km="http://www.w3.org/2002/03/xkms#" xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <km:UnverifiedKeyBinding> <ds:KeyInfo> <ds:KeyValue> <ds:RSAKeyValue> <ds:Modulus> x+VmVj+GhAKQuXl7NPXxUKc6XV2QHb1fZWekIu26AVVMtXMRlqV+lKJAJiBMcwtL zXwSbcNly0Jf/Rpjkb3awojFX3dkKezRyJAl5XZi4T6FUzBeR4Bt5olYX5zcS/J/ LnMZ5kdcd676lacfAccHQyn0utEaGFnGvAkYG53+qfs= </ds:Modulus> <ds:Exponent>AQAB</ds:Exponent> </ds:RSAKeyValue> </ds:KeyValue> </ds:KeyInfo> <km:KeyUsage>http://www.w3.org/2002/03/xkms#Encryption</km:KeyUsage> <km:UseKeyWith Application="urn:ietf:rfc:2440" Identifier="mary@example.com" /> </km:UnverifiedKeyBinding> <km:UnverifiedKeyBinding> <ds:KeyInfo> <ds:KeyValue> <ds:RSAKeyValue> <ds:Modulus> utPKzojkAQSaP2FF4YrAmu9e+GtTf9/Xi3c8z9kj29ZvgpPSI3TBUaMgoSUff9tA W7zE74zkFFqR/676HqJlm0LxqH54Gdr5ZGeHgGaZiKJzzYn8rEzkIzR+FQxY/p4p AgDd86gMfxPKQEWDcTN01x8FUiyRaCUgcmMIh4mQ/O0= </ds:Modulus> <ds:Exponent>AQAB</ds:Exponent> </ds:RSAKeyValue> </ds:KeyValue> </ds:KeyInfo> <km:KeyUsage>http://www.w3.org/2002/03/xkms#Encryption</km:KeyUsage> <km:UseKeyWith Application="urn:ietf:rfc:2440" Identifier="mary@example.com" /> </km:UnverifiedKeyBinding></km:LocateResult>
As Scenario 1 but using a validation service.
<?xml version="1.0" encoding="utf-8"?><km:ValidateRequest Service="http://markupsecurity.com:4080/xkms/service/soap12" xmlns:km="http://www.w3.org/2002/03/xkms#" xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <km:RespondWith>http://www.w3.org/2002/03/xkms#PGP</km:RespondWith> <km:QueryKeyBinding> <km:KeyUsage>http://www.w3.org/2002/03/xkms#Signature</km:KeyUsage> <km:UseKeyWith Application="urn:ietf:rfc:2440" Identifier="carol@example.com" /> </km:QueryKeyBinding></km:ValidateRequest><?xml version="1.0" encoding="utf-8"?><km:ValidateResult Service="http://markupsecurity.com:4080/xkms/service/soap12" ResultMajor="http://www.w3.org/2002/03/xkms#Success" RequestId="Ic2b052b9447fe334dc8699de849cf654" xmlns:km="http://www.w3.org/2002/03/xkms#" xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <km:KeyBinding> <ds:KeyInfo> <ds:PGPData> <ds:PGPKeyID> CE0HiNZPXl8= </ds:PGPKeyID> <ds:PGPKeyPacket> mI0EQx3hFQMEAKMt018bl9evtYd+xCgKfdbeXqiOSLQcLBA//gp3otW9AZVC0Tdq py9S46fPtRuasGFaKhqnXwBtbnrdvCR3YWjkimqk32FuKtxnSBXi2yssp5yycRye iRPC8CBEyJeLDHxjIrpltQ2oJ6toQ5nIh9D7x9xr+BltIZ+5nVAgoWCLABEBAAG0 EWNhcm9sQGV4YW1wbGUuY29tiK4EEAMCACIFAkMi23AJEAhNB4jWT15fAhsDAhYC AhUCAgsCAhkBAgcBAABp7AP/QoL/WVEpuxxSD/LJA3QjERnRjuYKS4L0/Ulb8gVa odMl3xsl100fpqF5ISUWaQZrUFPFSyG0781FZvmvcFlbomutCnNR2ugRg0rIjjib araXuxbdWDluNfNbwDkdQy9fhRz7/r7AudjpwFcoGfVjdPZ8graZ1kXZXvkZuPs8 +RmInAQQAwIAEAUCQyScTgkQAfTyJlFel/UAAHyPBACwAYWGqzO8N/+zhJjEsdnu PoGRbiaS6v7IynAqAlUMz/c7+Z5qsLPFjHUaxvAc9QtTNfte3ql9THBpxDRxB3/v Y21E6kIK9qHIUW6+4AfKVNPcwqj/p1U8W5s0z92IQZarbYQC7hJExwvk1ig7ZQ6Y /AN7/VctgdqMPEFcVNwUFbiNBEMd4RgCBACTwYI/1LNewEamlSzmi29v5XLBjXHV erc++BHiS+LZG+SY4BIKISA8Qa9lWaOub+66EuVx6IAupdJCpyEBDcXccmnVnflH aweOQxTHHGpfD4ndEbR9KN8uS9wT5MIPBHCxTb9eR03qVZuYxABwLfXqehvOnzSZ H4IDI62beGcf3wARAQABiJwEGAMCABAFAkMi23AJEAhNB4jWT15fAAC5lgP+LKWX uBE2cpJPRY28aBPHlcIfe9nkDWWH1FYHsHoa2yi4aoqmXvWC2By2aVUE5CXFLTbP 7grwpfqZ6OnpnRvPrzMXfsupi40UJ/EIbkpUKxiZ7jZjgdnKCBlIFBf2W1fYl3/K S9TN303faMJeljwTBpGUcqUoZSmAnNuGnTxYc5Y= </ds:PGPKeyPacket> </ds:PGPData> </ds:KeyInfo> <km:KeyUsage>http://www.w3.org/2002/03/xkms#Signature</km:KeyUsage> <km:UseKeyWith Application="urn:ietf:rfc:2440" Identifier="carol@example.com" /> <km:ValidityInterval NotBefore="2005-09-06T18:33:57Z" /> <km:Status StatusValue="http://www.w3.org/2002/03/xkms#Valid"> <km:ValidReason>http://www.w3.org/2002/03/xkms#Signature</km:ValidReason> <km:ValidReason>http://www.w3.org/2002/03/xkms#ValidityInterval</km:ValidReason> <km:ValidReason>http://www.w3.org/2002/03/xkms#RevocationStatus</km:ValidReason> </km:Status> </km:KeyBinding></km:ValidateResult>
Bob, who cannot parse PGP artifacts, wants to verify the signature over data he has receivedfrom Alice and requests validation of an attached<ds:PGPKeyPacket> containing theverification key. The service finds the key to be valid but leaves the establishment of trust to Bob.
<?xml version="1.0" encoding="utf-8"?><km:ValidateRequest Service="http://markupsecurity.com:4080/xkms/service/soap12" xmlns:km="http://www.w3.org/2002/03/xkms#" xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <km:RespondWith>http://www.w3.org/2002/03/xkms#KeyValue</km:RespondWith> <km:QueryKeyBinding> <ds:KeyInfo> <ds:PGPData> <ds:PGPKeyPacket> mI0EQx27fQMEAM3Hfx3yjzYol3SoE8PVl+CErHVPxDZJXtamrX52V7iVZQkvhoE0 uW5T7VObmKtIbzBQxOQ9oCjhoEN8QG9p0jX25xyDEZH8MRJPZ5+GFb/mEhRoLp91 MfP4cah7v6P8bXvk7UXcgKMh8zJlPxmOXkqaw+a7sGGxEDS4Q7nse0ZHABEBAAG0 EWFsaWNlQGV4YW1wbGUuY29tiK4EEAMCACIFAkMi228JEDt6MEFEpZKOAhsDAhYC AhUCAgsCAhkBAgcBAAD5BwP+MFhUsd43DS1t2/iUZKURua34nrv0erZFn5fMyu0z WN+HemA7XOouJKwme5qAKAX36cXjHgqAALu7O5bT7I0/9n0Omv5x6O3FcvtFtbv5 igO+Y3wxKEAuR45zmhhIIQgkWCtfDlFm0wc+yaWXgsEMRn9q1/ua6e8VS7/7S4QM qVaInAQQAwIAEAUCQyScTgkQAfTyJlFel/UAAONKA/0b/euhEaUw+eeVYcyrQa1d HTmWc8U53LqbuPMLZ59PkP1FiHcu5N5KD3xk/Xc14o8sP8BHd91TJnaM6sKxVEs1 580RR81Wol5sjISV89uuXm09NVNqDBNqi+vemjB66NJGLjoviZVGDzgi5vV7wF5q rdbtSp38HtJte1FMQHeScriNBEMdu4ACBACu1wQ0llewBTewtZJvo4I8RZsvXjTO 6wzotWhK+W10a/khxG7vBWymhMU5hXne/9O7vE7J7qT9j1tkdzNUQXGPOUb6b6kG GeicAXJ17qL0ActcSlnDWwA0P94PGBIpFowJUu0txOBdQHX3h/hOk+4PtWLXob6q hjlR+uS+a2AuaQARAQABiJwEGAMCABAFAkMi228JEDt6MEFEpZKOAAAN0gQAlgws XkSm2dBwCFaXMnHxdnCTLqZKCfCBd332w6G6S4tCoVlFW6MKxhwn2IyF8VgIyVl6 bTjnrT0E78FlWW9JX3JZje6a4nhus1TqEx12LfIYyX//T/2gnbiic+FqigE3N91N 0Hyixc2aGtAT7hCrMS+DTgvPHb2kLoR1+PMP/Fg= </ds:PGPKeyPacket> </ds:PGPData> </ds:KeyInfo> <km:KeyUsage>http://www.w3.org/2002/03/xkms#Signature</km:KeyUsage> <km:UseKeyWith Application="urn:ietf:rfc:2440" Identifier="alice@example.com"/> </km:QueryKeyBinding></km:ValidateRequest><?xml version="1.0" encoding="utf-8"?><km:ValidateResult Service="http://markupsecurity.com:4080/xkms/service/soap12" ResultMajor="http://www.w3.org/2002/03/xkms#Success" RequestId="I1e3a8142f0fd3a3acd6f9c0c29337b92" xmlns:km="http://www.w3.org/2002/03/xkms#" xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <km:KeyBinding> <ds:KeyInfo> <ds:KeyValue> <ds:RSAKeyValue> <ds:Modulus> zcd/HfKPNiiXdKgTw9WX4ISsdU/ENkle1qatfnZXuJVlCS+GgTS5blPtU5uYq0hvMFDE5D2g KOGgQ3xAb2nSNfbnHIMRkfwxEk9nn4YVv+YSFGgun3Ux8/hxqHu/o/xte+TtRdyAoyHzMmU/ GY5eSprD5ruwYbEQNLhDuex7Rkc= </ds:Modulus> <ds:Exponent>AQAB</ds:Exponent> </ds:RSAKeyValue> </ds:KeyValue> </ds:KeyInfo> <km:KeyUsage>http://www.w3.org/2002/03/xkms#Signature</km:KeyUsage> <km:UseKeyWith Application="urn:ietf:rfc:2440" Identifier="alice@example.com" /> <km:ValidityInterval NotBefore="2005-09-10T13:11:11Z" /> <km:Status StatusValue="http://www.w3.org/2002/03/xkms#Valid"> <km:ValidReason>http://www.w3.org/2002/03/xkms#Signature</km:ValidReason> <km:ValidReason>http://www.w3.org/2002/03/xkms#ValidityInterval</km:ValidReason> <km:ValidReason>http://www.w3.org/2002/03/xkms#RevocationStatus</km:ValidReason> </km:Status> </km:KeyBinding></km:ValidateResult>
Bob, who cannot parse PGP artifacts, wants to verify the signature over data he has receivedfrom Eric and requests validation of an attached<ds:PGPKeyPacket> containing the verification key. Theservice detects that the key in the<ds:PGPKeyPacket> has expired and returns an invalid status.
<?xml version="1.0" encoding="utf-8"?><km:ValidateRequest Service="http://markupsecurity.com:4080/xkms/service/soap12" xmlns:km="http://www.w3.org/2002/03/xkms#" xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <km:RespondWith>http://www.w3.org/2002/03/xkms#KeyValue</km:RespondWith> <km:QueryKeyBinding> <ds:KeyInfo> <ds:PGPData> <ds:PGPKeyPacket> mI0EQx3iSgMEAN45SS8CxySV3ODsAylz+o+/PR3zG59lIl1qnli92SuNAamfgg+K pGTr90su+FMi7nLGK0mJcHkx0umtL6uLtqHLQFOasixS70FXcGA6kyzFXmkOjRhI 8pYlQQHZifZEAGxk0XD+O93vqjoTA7aF4D1HnS0gG5c+fEFCuMfacvhFABEBAAG0 EGVyaWNAZXhhbXBsZS5jb22ItAQQAwIAKAUCQyKiqAkQE4Od9xugLMAFCQAnjQAC GwMCFgICFQICCwICGQECBwEAAMqVA/9asnYizHnouI1GlKtYKAJ7Q1O7W+CmQB8v oKfglT1hk/MrCqMNVa3v8nfCFTD5ElrYCuAs3ZERT8crfgwg3ltHYTQfWmzkKHzV MzV0MgHkRHfWwcEVOMzYTazHv8UD8aC3cpfOPJJr8D64T5gCLbIOdimjJZO+UKTe vbvs/7IjeLiNBEMd4k0CBADK+f1DzRnKAsHtGXSO6POBOM9jYT1ujboPk/cKFN9Z OjQ24TTuVKE1i24N905WZRpKqCy3En6wElOI7Ssii+Fcat0xbW8XuNQcu9IUsHdz aoLFNEc0nmNcW3eos/VrF9yKfMV6pty0ppAYIZkdNji6fETQbSZy3Ew/YpTlm0B8 9wARAQABiJwEGAMCABAFAkMioqgJEBODnfcboCzAAADezQP9H5o2xmlbDuPHo20K O4TWYVLEeqg2GEDSOINKeaYd2pwW6Aq9PUzJsVzq2sQ7+fjlD52Gf05P//EwhT9E aKoxQFHA5mthySOiIcHK2EufJbRi8piRd78CJXOgeArPMTUjITTCY1Ho9+v9uW4S ONqM5UGEcXQrIz07bjgp0DjiFBQ= </ds:PGPKeyPacket> </ds:PGPData> </ds:KeyInfo> <km:KeyUsage>http://www.w3.org/2002/03/xkms#Signature</km:KeyUsage> <km:UseKeyWith Application="urn:ietf:rfc:2440" Identifier="eric@example.com"/> </km:QueryKeyBinding></km:ValidateRequest><?xml version="1.0" encoding="utf-8"?><km:ValidateResult Service="http://markupsecurity.com:4080/xkms/service/soap12" ResultMajor="http://www.w3.org/2002/03/xkms#Success" RequestId="If57f175826e53e60dc3b056c05f063f0" xmlns:km="http://www.w3.org/2002/03/xkms#" xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <km:KeyBinding> <ds:KeyInfo> <ds:KeyValue> <ds:RSAKeyValue> <ds:Modulus> 3jlJLwLHJJXc4OwDKXP6j789HfMbn2UiXWqeWL3ZK40BqZ+CD4qkZOv3Sy74UyLucsYrSYlw eTHS6a0vq4u2octAU5qyLFLvQVdwYDqTLMVeaQ6NGEjyliVBAdmJ9kQAbGTRcP473e+qOhMD toXgPUedLSAblz58QUK4x9py+EU= </ds:Modulus> <ds:Exponent>AQAB</ds:Exponent> </ds:RSAKeyValue> </ds:KeyValue> </ds:KeyInfo> <km:KeyUsage>http://www.w3.org/2002/03/xkms#Signature</km:KeyUsage> <km:UseKeyWith Application="urn:ietf:rfc:2440" Identifier="eric@example.com" /> <km:ValidityInterval NotBefore="2005-09-10T09:08:56Z" NotOnOrAfter="2005-10-06T18:39:06Z"/> <km:Status StatusValue="http://www.w3.org/2002/03/xkms#Invalid"> <km:InvalidReason>http://www.w3.org/2002/03/xkms#ValidityInterval</km:InvalidReason> </km:Status> </km:KeyBinding></km:ValidateResult>
Prior to verifying a signature on data that he has received from Ralph, Bob, who cannot parse PGPartifacts, requests validation of an attached<ds:PGPKeyPacket>, containing the verification key. Theservice detects a PGP revocation signature in the<ds:PGPKeyPacket> and returns an invalid status.
<?xml version="1.0" encoding="utf-8"?><km:ValidateRequest Service="http://markupsecurity.com:4080/xkms/service/soap12" xmlns:km="http://www.w3.org/2002/03/xkms#" xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <km:RespondWith>http://www.w3.org/2002/03/xkms#KeyValue</km:RespondWith> <km:QueryKeyBinding> <ds:KeyInfo> <ds:PGPData> <ds:PGPKeyPacket> mI0EQx3mGQMEANzTnHv+1yclF86wt6TH+M+gu/X6c6krqZ8IVBVlANbaCM9fidm+ vH7V2bRtBT0YvyLmPGjtnHXuf6oe8MyB/0nGJF2bJjKijGb6QYeqGrfnC0bG/CP9 tBl5SL/44LqzVeHOv61kd75Fk3uPXFWgSM1es08JZCw7nW+A9K7O9UoZABEBAAGI nAQgAwIAEAUCQ0VL+QkQwPAnINkyJCIAAMlhBACRk6FTUDgtlst18PfmdSMqh4i4 pGnVM6cZbCJ3DlQ5uYn7JPm88W+Gh8tpsTXOs2bdpAJeqW5EfP0X80L6LUhn9oJo IVhH6Qoupfd5iaA/CeHsL5t9K/1Q0HhCKb2nSiTbU36Quy5Idv2VjtvZl1GzcGCs s2XQgJlg5FgyTG3qn7QRcmFscGhAZXhhbXBsZS5jb22IrgQQAwIAIgUCQyLbcQkQ wPAnINkyJCICGwMCFgICFQICCwICGQECBwEAALw7A/9jEfJMax396YdbP1uycRgy 0bPUq9uBBWY6JC6vCIe3jwwSO1VWD4hNJa1Nnkx41HtDTS9OC0+7Kfl/QPSMCj1k DpMPCKpGZCIQAIX5gRrdYugo5AbJan4AFkLfI4i/04bp7fUBD9U5/L+8sjeRettW SNlBdkEZG01MTKniZT6JZriNBEMd5hwCBACSmpGmRuChmcNeBP6n8fm3vaPTOCPB cZEJ9EyxAW0DkKmfbg9T1/PwQjR1em3u2MHGfwKwLE0S/h4nW5UOhtupmiZSI5T2 /kS02wHyRZpiWp2ML4MumrR+EFOUbfLgtz7Df2T69HnzX0obf1FYo2RzVV7kgn5m ReRlPN1bxZYyjwARAQABiJwEGAMCABAFAkMi23EJEMDwJyDZMiQiAAB+hgP7BK7o Zp7K0Mi1rEx48lyQBSgecjVwVFhTP7zjaR24bhYZUj2UsDKsvKLTG0prv9F2SsIe O/oh62HM5NJvrx8fsOAoClv1ZgPD5HQMCBgh3dQSZAys7kPV3C5voTFB9/4GOt2q ERFwgZvb+mrf5GnB9VzoPAFwYpKWW2eD9anCyg4= </ds:PGPKeyPacket> </ds:PGPData> </ds:KeyInfo> <km:KeyUsage>http://www.w3.org/2002/03/xkms#Signature</km:KeyUsage> <km:UseKeyWith Application="urn:ietf:rfc:2440" Identifier="ralph@example.com"/> </km:QueryKeyBinding></km:ValidateRequest><?xml version="1.0" encoding="utf-8"?><km:ValidateResult Service="http://markupsecurity.com:4080/xkms/service/soap12" ResultMajor="http://www.w3.org/2002/03/xkms#Success" RequestId="If26885c2515dd40c47cb339c437f4444" xmlns:km="http://www.w3.org/2002/03/xkms#" xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <km:KeyBinding> <ds:KeyInfo> <ds:KeyValue> <ds:RSAKeyValue> <ds:Modulus> 3NOce/7XJyUXzrC3pMf4z6C79fpzqSupnwhUFWUA1toIz1+J2b68ftXZtG0FPRi/IuY8aO2c de5/qh7wzIH/ScYkXZsmMqKMZvpBh6oat+cLRsb8I/20GXlIv/jgurNV4c6/rWR3vkWTe49c VaBIzV6zTwlkLDudb4D0rs71Shk= </ds:Modulus> <ds:Exponent>AQAB</ds:Exponent> </ds:RSAKeyValue> </ds:KeyValue> </ds:KeyInfo> <km:KeyUsage>http://www.w3.org/2002/03/xkms#Signature</km:KeyUsage> <km:UseKeyWith Application="urn:ietf:rfc:2440" Identifier="ralph@example.com" /> <km:ValidityInterval NotBefore="2005-09-10T13:10:13Z" /> <km:Status StatusValue="http://www.w3.org/2002/03/xkms#Invalid"> <km:ValidReason>http://www.w3.org/2002/03/xkms#Signature</km:ValidReason> <km:ValidReason>http://www.w3.org/2002/03/xkms#ValidityInterval</km:ValidReason> <km:InvalidReason>http://www.w3.org/2002/03/xkms#RevocationStatus</km:InvalidReason> </km:Status> </km:KeyBinding></km:ValidateResult>
Fred registers a service generated key pair and binds it to a PGP artifact. He authenticates therequest with a key derived from a shared secret ("secret") established out of band with the serviceand mapped to the<ds:KeyName> Fred. As the service generates the key pair, it can producethe self-signed PGP artfifact.
<?xml version="1.0" encoding="utf-8"?><km:RegisterRequest Service="http://markupsecurity.com:4080/xkms/service/soap12" xmlns:km="http://www.w3.org/2002/03/xkms#" xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <km:RespondWith>http://www.w3.org/2002/03/xkms#PGP</km:RespondWith> <km:PrototypeKeyBinding> <km:KeyUsage>http://www.w3.org/2002/03/xkms#Signature</km:KeyUsage> <km:UseKeyWith Application="urn:ietf:rfc:2440" Identifier="fred@example.com" /> <km:RevocationCodeIdentifier>TD4zyGKCIHCJgKk4i+BUN1HFXWE=</km:RevocationCodeIdentifier> </km:PrototypeKeyBinding> <km:Authentication> <km:KeyBindingAuthentication> <ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <ds:SignedInfo> <ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/> <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#hmac-sha1"/> <ds:Reference URI="#Ie7e32519839a45e597b6f3646ead1ceb"> <ds:Transforms> <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/> </ds:Transforms> <ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/> <ds:DigestValue>+Ncjqg7RCB2TFL81x1ZDWKjV0ho=</ds:DigestValue> </ds:Reference> </ds:SignedInfo> <ds:SignatureValue>zBevtq27XnPrKGi5oTUGgYBADU4=</ds:SignatureValue> <ds:KeyInfo> <ds:KeyName>Fred</ds:KeyName> </ds:KeyInfo> </ds:Signature> </km:KeyBindingAuthentication> </km:Authentication></km:RegisterRequest><?xml version="1.0" encoding="utf-8"?><km:RegisterResult Service="http://markupsecurity.com:4080/xkms/service/soap12" ResultMajor="http://www.w3.org/2002/03/xkms#Success" RequestId="I67897b275c03c80c5c151a53a8eee3a2" xmlns:km="http://www.w3.org/2002/03/xkms#" xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <km:KeyBinding> <ds:KeyInfo> <ds:PGPData> <ds:PGPKeyID>4GblxTJDnUM=</ds:PGPKeyID> <ds:PGPKeyPacket> mI0EQ2kkDwMEAKlCG2jQa/nnO9CZEqXsc9l1OcmSjR4SvvJ0PjbZiAzy5Ur3+X27 Fus+mzW9IGfV8zRAcMRv3bx415kodr1zPAFeg/HRwazMjpthUTcTeWogplRyhZBt jHaGhgjIBPtSzf9Lfa/RQ/xnduehFM/3Vffj/3nqQEOzGngLBAWZy8n9ABEBAAG0 EGZyZWRAZXhhbXBsZS5jb22ItAQQAwIAKAUCQ2kkEQkQ4GblxTJDnUMFCQHhM4AC GwMCFgICFQICCwICGQECBwEAAMaOBAChYHFVA0m1iKwRo/S+JOfwggC/klfeCktU LeG0L/066xJyU/zSUI9eXIPjfGNDBEtJpxP86Mp1f0Ur/LpypkVLZGuqEx+vZxIo tYZEsZvaGZtukzfNOhsAvXbpnygv8fdx7QvnPvqWIWWkgI0gDPb2LP+dxbeKiUzW UFMX14dbJw== </ds:PGPKeyPacket> </ds:PGPData> </ds:KeyInfo> <km:KeyUsage>http://www.w3.org/2002/03/xkms#Signature</km:KeyUsage> <km:UseKeyWith Application="urn:ietf:rfc:2440" Identifier="fred@example.com" /> <km:Status StatusValue="http://www.w3.org/2002/03/xkms#Valid"> <km:ValidReason>http://www.w3.org/2002/03/xkms#Signature</km:ValidReason> <km:ValidReason>http://www.w3.org/2002/03/xkms#RevocationStatus</km:ValidReason> <km:ValidReason>http://www.w3.org/2002/03/xkms#ValidityInterval</km:ValidReason> </km:Status> </km:KeyBinding> <km:PrivateKey> <enc:EncryptedData Type="http://www.w3.org/2001/04/xmlenc#Content" MimeType="text/xml" xmlns:enc="http://www.w3.org/2001/04/xmlenc#"> <enc:EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc"/> <enc:CipherData> <enc:CipherValue> WnG2zcwN4R05y/vzbwRMmQ3olF6IYdjq7elzHtd9aeRaXXdycHhz8HQAN+l9doYv v45eUU+5YdERMubv3xBkdGTCAIeoPHfz69qF9UHZ0sDOAMX3Q6niIPZ4YS0yyw1w CwyjMXldi1+dDfNBHXw+0Nu68ucuJg1XOoWAaGpqO4svMA1ALB76A+tLUrSQh+ov fZrMqg6gE5x5dOo7/cPqObhLxgtLhLl0xaMy6Utst7xY6xibrQlp0i13B2o9YeIJ bOp3zbtjTjN9CGVgYSPXtEDqREJwzHyN6EzAU2qbKdVlMiWFN1BsptJOqXVRtjnp zFx+aZLi8GML2iUxHGFSg/6mvDy3w9PKyNiXtCkP9sreJ2ClBSMmlXjUgxNry8aB 77WuNSi+XdHzMzFc57UmZH4skneVZexG0IEVw83/o2tcjWT7OMMIWnGC+ibvFM8x Dua0BYS3cwVrF3lXm7ShEY5U0uRxZg11nHb3NHCSkhO2/53yFC08jEzoHjIh5R1k 5GprbFfcpZJcfAqvzCzfTFp53vj/FsuIfmb+RIpy2i66JnOA/GZssLlkT6PcsbDS k6S9tJF/nxRarMyzlTEN2WKrOU9F1sm3+jj2eq81AjwyCDSyYzMke+pVNQwPH79y 8VAXiEoohuKiP5DN2PWvgTz7rRDz0sFo+z9odClr6jBsOsUVAorJ7PEDGJB4eIR+ YTKGa6DyhECFm1Z0RT/frQylosATcrKZAjI7LzKgrNOKFFqcRfm3FO4lmHMYD2Ni G0dYwrETI3npwjvQ0lubU2ALFfOeiWMku7uGo9nKoY57gK0BHa+MaGc79VAHeZNi 2DPsdjCsdmgeSi23DFwU8fBJf5KRB6BoUrelHiJq3YeHWMmImU/SL/+qLlHfmvTF nKhUeLAxsxkeZXSwpMLX7CbHDfdfPHM+2KlBW5A05Ljb/ngj9hLnXKWayERigx4h FyIu/WJTfqBYOdDS86GcxDozHXeGX9aQAHuV0Nu1XJnGpIC/G5Bnjk4is3Keb6bu WsPtVm/OonShjhCUKD/cIMoUH23sYZ4bb+Lihd6TeuXH3jePze7wmA7LG80ujpDq 4bqMUv287VXIGUeu6yo4E1wkQl3nrnjY0Qi0FKU2LiYqhkLaj372ukUNEMb+rL40 99aNF8bjkBPuqiPMdNep+RtB80dKNgoc8/gegg/B9Cb367ySuXB1zrmQ8XSH72b8 k5LpgE17e9m1A4FdTfzdMcXOryzeGn54DgPViC+Ql2lk/U1sDhXm6jOHa612Npqn EZhogUkXtrcZl/ftbmvp5YDucTUpnLSRS/LAmRsGB/TIt8Bpd0It0w4b2IB288dR ZEHXRDmL74HOx4OrDd3SOpOmpoLjD6c1nYD0JnED5o2l/XAHd+zfMQ952A/1CLOj lnwLUdAO4jFkh32m0BfcVXmvqz1TPS2qec79QyxkvOPENAQPW68k7zV6trcGQ+f3 qfmjlKNumYpR0jd/D2ZIC8wT6UX9p56neO8Co3sL8Zr3gOpJ3mRDOxIi5RpBrpxR NZWxeOMPUzEIZZw0lShCwHUfHzvbvMylVigG6JQ+Pm0MTZyUH/Nj2CBFswqpG6tn 3Th9ROdp/NWSeHr3eehKI6tTBPwj+4o0PdwyLBk9PVyVAiI1ksgrCA== </enc:CipherValue> </enc:CipherData> </enc:EncryptedData> </km:PrivateKey></km:RegisterResult>
Harriet has previously registered a service generated key pair andbound the public-key to an X.509 certificate. She later elects to become a PGPuser and decides to create a PGP binding for the same public-key. Sheincludes the original X.509 certificate in the key bindingspecification and provides proof of possession in the usual way. Sheauthenticates the request with a key derived from a shared secret ("secret")established out of band with the service and mapped to the<ds:KeyName> Harriet. The service returns the selfsigned PGP artifact and its key id.
<?xml version="1.0" encoding="utf-8"?><km:ReissueRequest Service="http://markupsecurity.com:4080/xkms/service/soap12" xmlns:km="http://www.w3.org/2002/03/xkms#" xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <km:RespondWith>http://www.w3.org/2002/03/xkms#PGP</km:RespondWith> <km:ReissueKeyBinding> <ds:KeyInfo> <ds:X509Data> <ds:X509Certificate> MIICmTCCAgKgAwIBAgICAM8wDQYJKoZIhvcNAQEFBQAwQzELMAkGA1UEBhMCSUUx DzANBgNVBAgTBkR1YmxpbjEjMCEGA1UEAxMaUlNBIFRlc3QgQ0EgLSBObyBMaWFi aWxpdHkwHhcNMDUxMTAzMjIyMjA3WhcNMDYxMTAzMjIyMjA3WjBCMQswCQYDVQQG EwJJRTEVMBMGA1UEChMMRXhhbXBsZSBDb3JwMRwwGgYDVQQDFBNoYXJyaWV0QGV4 YW1wbGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQClo6apLQBcPLgP llH/85pFshxzbBVA/JzDo1pNNOp1RYwDsoN2g82JphcU5ASh+U9uz+SJsqAilyp1 OoDIx4pn6opykZjqC3vUBbSaSh03kgmcc11aTu9/hyI7MgAiB8w1r1UaOcNgjB/q pYdXKJoz5JsGx/xnjgW+urk6V3VvUQIDAQABo4GcMIGZMB0GA1UdDgQWBBSIh1DA VFzNxDq6RpGjwgL15cTr2TBrBgNVHSMEZDBigBTW+VLknCxzznGFMlyAZlR8KIKh WqFHpEUwQzELMAkGA1UEBhMCSUUxDzANBgNVBAgTBkR1YmxpbjEjMCEGA1UEAxMa UlNBIFRlc3QgQ0EgLSBObyBMaWFiaWxpdHmCAWQwCwYDVR0PBAQDAgSwMA0GCSqG SIb3DQEBBQUAA4GBAB8m/FPlRPnb6CSHHDlW8dVfDefHjDhBpI4BBPEpAgG197mz Yui8P8UUzE03HH99mh2en31FnQlbkUOZ0I46CmmkGGH/O8vRCjrTjrHe39d3pCpk EYUmB1Ss3MWl1uJMn27OW7MR2MR1+z0vDXzaR9SniuThs8TgxL3rDmK1MH7k </ds:X509Certificate> </ds:X509Data> </ds:KeyInfo> <km:KeyUsage>http://www.w3.org/2002/03/xkms#Signature</km:KeyUsage> <km:KeyUsage>http://www.w3.org/2002/03/xkms#Encryption</km:KeyUsage> <km:UseKeyWith Application="urn:ietf:rfc:2440" Identifier="harriet@example.com" /> <km:ValidityInterval NotOnOrAfter="2006-11-03T22:22:07Z"/> <km:Status StatusValue="http://www.w3.org/2002/03/xkms#Valid"/> </km:ReissueKeyBinding> <km:Authentication> <km:KeyBindingAuthentication> <ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <ds:SignedInfo> <ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/> <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#hmac-sha1"/> <ds:Reference URI="#I5fa9baf8285f0b15bdb1eaa171fa806c"> <ds:Transforms> <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/> </ds:Transforms> <ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/> <ds:DigestValue>TWpEy32jjPbFv804v/7ton10Iew=</ds:DigestValue> </ds:Reference> </ds:SignedInfo> <ds:SignatureValue>XY2JJ4aGbVMqI+ZM4JM4ytrCB3k=</ds:SignatureValue> <ds:KeyInfo> <ds:KeyName>Harriet</ds:KeyName> </ds:KeyInfo> </ds:Signature> </km:KeyBindingAuthentication> </km:Authentication> <km:ProofOfPossession> <ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <ds:SignedInfo> <ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/> <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/> <ds:Reference URI="#I5fa9baf8285f0b15bdb1eaa171fa806c"> <ds:Transforms> <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/> </ds:Transforms> <ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/> <ds:DigestValue>TWpEy32jjPbFv804v/7ton10Iew=</ds:DigestValue> </ds:Reference> </ds:SignedInfo> <ds:SignatureValue> gF74WHXnuAQGpeRWkI/V6gPqPRp/DAq4sDzHyrPuuUIxnUZonAmGoqYLaNWJmWoB P9454V/6V31CFOBG/lhJovnyjR8o4Y2uJN3IylVf2OZ3wpYvE2hQwz+3UzcOMR8g eQrCMLlhYsWCTfRxkuOxK4IxZ5rq8q/51NlLXo17/aI= </ds:SignatureValue> </ds:Signature> </km:ProofOfPossession></km:ReissueRequest><?xml version="1.0" encoding="utf-8"?><km:ReissueResult Service="http://markupsecurity.com:4080/xkms/service/soap12" ResultMajor="http://www.w3.org/2002/03/xkms#Success" RequestId="I69fe4f812ae299fa05f6e87ae1d9077a" xmlns:km="http://www.w3.org/2002/03/xkms#" xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <km:KeyBinding> <ds:KeyInfo> <ds:PGPData> <ds:PGPKeyID>KW0ZZuAeGHU=</ds:PGPKeyID> <ds:PGPKeyPacket> mI0EQ2qNjwEEAKWjpqktAFw8uA+WUf/zmkWyHHNsFUD8nMOjWk006nVFjAOyg3aD zYmmFxTkBKH5T27P5ImyoCKXKnU6gMjHimfqinKRmOoLe9QFtJpKHTeSCZxzXVpO 73+HIjsyACIHzDWvVRo5w2CMH+qlh1comjPkmwbH/GeOBb66uTpXdW9RABEBAAG0 E2hhcnJpZXRAZXhhbXBsZS5jb22ItAQQAQIAKAUCQ2qY3gkQKW0ZZuAeGHUFCQHh M4ACGwMCFgICFQICCwICGQECBwEAABuLA/wIwdkl1K58crsycBpUmLbTjPRTq2LB 8XJV/BqLE2SKNs+aGOxOh2aMRTtY5X3LUO/GH+AR0cKZCqLgCnZhd5fUyWo7VmWa bfXgoroCG4NNzcrif9a5XQr9RNgVggqvwndC15A0pw063/GorlZ6bmc9WZpu2s/w sOKH+MpqfgOG4Q== </ds:PGPKeyPacket> </ds:PGPData> </ds:KeyInfo> <km:KeyUsage>http://www.w3.org/2002/03/xkms#Signature</km:KeyUsage> <km:KeyUsage>http://www.w3.org/2002/03/xkms#Encryption</km:KeyUsage> <km:UseKeyWith Application="urn:ietf:rfc:2440" Identifier="harriet@example.com" /> <km:Status StatusValue="http://www.w3.org/2002/03/xkms#Valid"> <km:ValidReason>http://www.w3.org/2002/03/xkms#Signature</km:ValidReason> <km:ValidReason>http://www.w3.org/2002/03/xkms#RevocationStatus</km:ValidReason> <km:ValidReason>http://www.w3.org/2002/03/xkms#ValidityInterval</km:ValidReason> </km:Status> </km:KeyBinding></km:ReissueResult>
Ralph suspects that his key has been compromised and decides torevoke it. He specifies the key to be revoked in a<ds:PGPKeyPacket> element and authenticates therequest with his private key. The key pair was originally generatedby the service, so the service has access to the key required tocreate a PGP revocation signature and attach it to the returned<ds:PGPKeyPacket>. Subsequent requests for Ralph's key will return a<ds:PGPKeyPacket> containing the revocation signature.
<?xml version="1.0" encoding="utf-8"?><km:RevokeRequest Service="http://markupsecurity.com:4080/xkms/service/soap12" xmlns:km="http://www.w3.org/2002/03/xkms#" xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <km:RespondWith>http://www.w3.org/2002/03/xkms#PGP</km:RespondWith> <km:RevokeKeyBinding> <ds:KeyInfo> <ds:PGPData> <ds:PGPKeyPacket> mI0EQx3mGQMEANzTnHv+1yclF86wt6TH+M+gu/X6c6krqZ8IVBVlANbaCM9fidm+ vH7V2bRtBT0YvyLmPGjtnHXuf6oe8MyB/0nGJF2bJjKijGb6QYeqGrfnC0bG/CP9 tBl5SL/44LqzVeHOv61kd75Fk3uPXFWgSM1es08JZCw7nW+A9K7O9UoZABEBAAG0 EXJhbHBoQGV4YW1wbGUuY29tiK4EEAMCACIFAkMi23EJEMDwJyDZMiQiAhsDAhYC AhUCAgsCAhkBAgcBAAC8OwP/YxHyTGsd/emHWz9bsnEYMtGz1KvbgQVmOiQurwiH t48MEjtVVg+ITSWtTZ5MeNR7Q00vTgtPuyn5f0D0jAo9ZA6TDwiqRmQiEACF+YEa 3WLoKOQGyWp+ABZC3yOIv9OG6e31AQ/VOfy/vLI3kXrbVkjZQXZBGRtNTEyp4mU+ iWa4jQRDHeYcAgQAkpqRpkbgoZnDXgT+p/H5t72j0zgjwXGRCfRMsQFtA5Cpn24P U9fz8EI0dXpt7tjBxn8CsCxNEv4eJ1uVDobbqZomUiOU9v5EtNsB8kWaYlqdjC+D Lpq0fhBTlG3y4Lc+w39k+vR5819KG39RWKNkc1Ve5IJ+ZkXkZTzdW8WWMo8AEQEA AYicBBgDAgAQBQJDIttxCRDA8Ccg2TIkIgAAfoYD+wSu6GaeytDItaxMePJckAUo HnI1cFRYUz+842kduG4WGVI9lLAyrLyi0xtKa7/RdkrCHjv6IethzOTSb68fH7Dg KApb9WYDw+R0DAgYId3UEmQMrO5D1dwub6ExQff+BjrdqhERcIGb2/pq3+RpwfVc 6DwBcGKSlltng/WpwsoO </ds:PGPKeyPacket> </ds:PGPData> </ds:KeyInfo> <km:Status StatusValue="http://www.w3.org/2002/03/xkms#Invalid"/> </km:RevokeKeyBinding> <km:Authentication> <km:KeyBindingAuthentication> <ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <ds:SignedInfo> <ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/> <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/> <ds:Reference URI="#Ic233ba888219078bc6b6dd787236bca0"> <ds:Transforms> <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/> </ds:Transforms> <ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/> <ds:DigestValue>6kp+yCsOOlFYM9xHw7dA43FOMck=</ds:DigestValue> </ds:Reference> </ds:SignedInfo> <ds:SignatureValue> CrSwO9Mg1aFB1bXkYbZlrVABjzC6NP0RydVWY8LdO4Kb7wGEuDtb8SO1SSPb0q0k oxJZIqMtLdPEH/mBKPKe1RTBRSo1ymL0TNb0If8k5U4FixMXM18a3NHV/ceocSyM 3qWOVcurL5axME+oitFs31ZRkOiAJ8krTwt/mCotojE= </ds:SignatureValue> </ds:Signature> </km:KeyBindingAuthentication> </km:Authentication></km:RevokeRequest><?xml version="1.0" encoding="utf-8"?><km:RevokeResult Service="http://markupsecurity.com:4080/xkms/service/soap12" ResultMajor="http://www.w3.org/2002/03/xkms#Success" RequestId="If9e8a8edaffd88f33baedc731ed6b685" xmlns:km="http://www.w3.org/2002/03/xkms#" xmlns:ds="http://www.w3.org/2000/09/xmldsig#"> <km:KeyBinding> <ds:KeyInfo> <ds:PGPData> <ds:PGPKeyPacket> mI0EQx3mGQMEANzTnHv+1yclF86wt6TH+M+gu/X6c6krqZ8IVBVlANbaCM9fidm+ vH7V2bRtBT0YvyLmPGjtnHXuf6oe8MyB/0nGJF2bJjKijGb6QYeqGrfnC0bG/CP9 tBl5SL/44LqzVeHOv61kd75Fk3uPXFWgSM1es08JZCw7nW+A9K7O9UoZABEBAAGI nAQgAwIAEAUCQ0VL+QkQwPAnINkyJCIAAMlhBACRk6FTUDgtlst18PfmdSMqh4i4 pGnVM6cZbCJ3DlQ5uYn7JPm88W+Gh8tpsTXOs2bdpAJeqW5EfP0X80L6LUhn9oJo IVhH6Qoupfd5iaA/CeHsL5t9K/1Q0HhCKb2nSiTbU36Quy5Idv2VjtvZl1GzcGCs s2XQgJlg5FgyTG3qn7QRcmFscGhAZXhhbXBsZS5jb22IrgQQAwIAIgUCQyLbcQkQ wPAnINkyJCICGwMCFgICFQICCwICGQECBwEAALw7A/9jEfJMax396YdbP1uycRgy 0bPUq9uBBWY6JC6vCIe3jwwSO1VWD4hNJa1Nnkx41HtDTS9OC0+7Kfl/QPSMCj1k DpMPCKpGZCIQAIX5gRrdYugo5AbJan4AFkLfI4i/04bp7fUBD9U5/L+8sjeRettW SNlBdkEZG01MTKniZT6JZriNBEMd5hwCBACSmpGmRuChmcNeBP6n8fm3vaPTOCPB cZEJ9EyxAW0DkKmfbg9T1/PwQjR1em3u2MHGfwKwLE0S/h4nW5UOhtupmiZSI5T2 /kS02wHyRZpiWp2ML4MumrR+EFOUbfLgtz7Df2T69HnzX0obf1FYo2RzVV7kgn5m ReRlPN1bxZYyjwARAQABiJwEGAMCABAFAkMi23EJEMDwJyDZMiQiAAB+hgP7BK7o Zp7K0Mi1rEx48lyQBSgecjVwVFhTP7zjaR24bhYZUj2UsDKsvKLTG0prv9F2SsIe O/oh62HM5NJvrx8fsOAoClv1ZgPD5HQMCBgh3dQSZAys7kPV3C5voTFB9/4GOt2q ERFwgZvb+mrf5GnB9VzoPAFwYpKWW2eD9anCyg4= </ds:PGPKeyPacket> </ds:PGPData> </ds:KeyInfo> <km:KeyUsage>http://www.w3.org/2002/03/xkms#Signature</km:KeyUsage> <km:UseKeyWith Application="urn:ietf:rfc:2440" Identifier="ralph@example.com" /> <km:Status StatusValue="http://www.w3.org/2002/03/xkms#Invalid"> <km:InvalidReason>http://www.w3.org/2002/03/xkms#RevocationStatus</km:InvalidReason> </km:Status> </km:KeyBinding></km:RevokeResult>
This section discusses some properties of the PGP design that has implications on its use with XKMS.We cover issues pertaining to trust model, registration of PGP Subkeys and PGP Version 4 SignatureSubpackets.
An interoperable solution to the problems described in this sectionis left open to future version of the XKMS Specification. Ourintention is to describe the limitations we have found while usingXKMS with PGP and give some ideas towards possible solutions.
XKMS defines aStatusType schema type for the purposeof expressing a key's binding status and reasons for which a key has aparticular status. XKMS distinguishes between three values forbinding status, namely:
http://www.w3.org/2002/03/xkms#Validhttp://www.w3.org/2002/03/xkms#Invalidhttp://www.w3.org/2002/03/xkms#IndeterminateReason codes are defined for:
http://www.w3.org/2002/03/xkms#IssuerTrusthttp://www.w3.org/2002/03/xkms#RevocationStatushttp://www.w3.org/2002/03/xkms#ValidityIntervalhttp://www.w3.org/2002/03/xkms#SignatureSection 5.1.8 of the XKMS specification provides a table that shows how these values relate to ahierarchical trust model. The following table illustrates the same relationships for PGP:
ReasonanyURI Type (prefixed with http://www.w3.org/2002/03/xkms#) | Description | PGP Equivalent | |
|---|---|---|---|
| Valid | Invalid | ||
| IssuerTrust | The issuer of the information on which the key binding is based is considered to be trustworthy by the XKMS service | See below | See below |
| RevocationStatus | The XKMS service has affirmatively verified the status of the key binding with an authoritative source | The key is not revoked | The key is revoked |
| ValidityInterval | The requested time instant was within the validity interval of the key binding | The key was valid at the requested time instant | The requested time instant was before or after the key validity interval |
| Signature | Signature on signed data provided by the client in the <Keyinfo> element was successfully verified. | Self Signature verified | Self Signature verification failed |
In the case of PGP, which uses a non-hierarchical model, thehttp://www.w3.org/2002/03/xkms#IssuerTrust reason codeimplies that the service has knowledge about a client's trustrelationships. A service that does not have knowledge about a client'strust relationships SHOULD NOT give reason codehttp://www.w3.org/2002/03/xkms#IssuerTrust for statusvalueshttp://www.w3.org/2002/03/xkms#Valid, orhttp://www.w3.org/2002/03/xkms#Invalid. While XKMS doesnot directly support communication of this trust information from theclient to the service, it could be achieved out of band or through anXKMS message extension. The design of such an XKMS message extensionis beyond the scope of this note.
In PGP, it is not uncommon to bind a single user id to one master keyand multiple subkeys. The master key is typically a signature keywhile the subkeys can be either signature, encryption or, algorithmallowing, mixed purpose keys. However, as the XKMS schema allows onlya single<xkms:PrototypeKeyBinding> element, XKMS islimited to registration of a single key pair per request. It cannottherefore support the simultaneous registration of one master key andone or more subkeys.
For both client and service generated key pairs, this could bemitigated through a service agreement or service policy that wouldspecify the number of subkeys to generate along with their purpose. Inthe case of a service generated key pair, a masterkey-subkey(s)collection could be returned as encrypted data in an<xkms:PrivateKey>element.
PGP defines a Version 4 Signature Packet Format [PGP, Section 5.2.3. Version 4 Signature Packet Format]that provides for the inclusion of Signature Subpackets [PGP, Section 5.2.3.1. Signature SubpacketSpecification]. A Signature Subpacket is intended to communicateadditional information about a keyholder and her key pair and MAY becryptographically bound to the keyholders key pair. Additionally, aSignature Subpacket has a criticality indicator (bit 7 of theSignature Subpacket Type) which affects the PGP end entity software.The complete set of Signature Subpackets are:
While the value of certain Signature Subpackets are implied(e.g. signature creation time), others are typically specified by thekeyholder at key creation time. However, XKMS 2.0 does not provideenough standard elements and attributes that would let a user specifythe values for the above subpackets. Support for this could be addedthrough the definition of one or more XKMS message extensions. Thevalues could also be inferred through a service agreement or a servicepolicy.
At a minimum, a PGP user should be able to affect the value and criticalityindicator of the followingSignature SubPackets:
Note that revocation reason is a feature that is not specific toPGP and should therefore be addressed in the more general XKMScontext. We included it in the above list for completeness.