vanitasvitae/openpgp-notes
1
0
Fork 0
mirror of https://codeberg.org/openpgp/notes.git synced 2025-09-10 11:49:40 +02:00
Code Issues Projects Releases Packages Wiki Activity

adjust links for normalized file names

Browse source
This commit is contained in:
Heiko Schaefer 2023-12-12 12:48:50 +01:00
parent 9a8339c64f
commit 506414c24b
No known key found for this signature in database
GPG key ID: DAE9A9050FCCF1EB
4 changed files with 9 additions and 10 deletions
Download patch file Download diff file Expand all files Collapse all files

2
book/source/adv/certificates.md
View file

@ -7,7 +7,7 @@ SPDX-License-Identifier: CC-BY-SA-4.0
## When are certificates valid? ## When are certificates valid?
Certificates are composites of components that are linked together using [signatures](../08-signing_components). Certificates are composites of components that are linked together using [signatures](../signing_components).
A certificate can be valid or invalid as a whole. However, even when a certificate is valid, individual components (subkeys or identities) of it can be invalid. A certificate can be valid or invalid as a whole. However, even when a certificate is valid, individual components (subkeys or identities) of it can be invalid.

14
book/source/glossary.md
View file

@ -125,7 +125,7 @@ Criticality Flag
A flag on {term}`Subpacket`s, that defines their criticality, which is used for validation. See [](criticality_of_subpackets). A flag on {term}`Subpacket`s, that defines their criticality, which is used for validation. See [](criticality_of_subpackets).
Cryptographic Key Cryptographic Key
A {term}`symmetric<Symmetric Cryptography>` or {term}`asymmetric<Asymmetric Cryptography>` cryptographic key is used for signing and encryption operations. See [](03-cryptography). A {term}`symmetric<Symmetric Cryptography>` or {term}`asymmetric<Asymmetric Cryptography>` cryptographic key is used for signing and encryption operations. See [](cryptography).
Cryptographic Signature Cryptographic Signature
A raw cryptographic signature is a sequence of bytes created by a {term}`Cryptographic Key`. A raw cryptographic signature is a sequence of bytes created by a {term}`Cryptographic Key`.
@ -140,10 +140,10 @@ Data Compression
See Wikipedia on [Data Compression](https://en.wikipedia.org/wiki/Data_compression). See Wikipedia on [Data Compression](https://en.wikipedia.org/wiki/Data_compression).
Data Signature Data Signature
{term}`Cryptographic signature` over binary documents or canonical text documents. See [](/07-signing_data). {term}`Cryptographic signature` over binary documents or canonical text documents. See [](/signing_data).
Data Signature Packet Data Signature Packet
An {term}`OpenPGP Signature Packet` which describes a {term}`Data Signature`. See [](/07-signing_data). An {term}`OpenPGP Signature Packet` which describes a {term}`Data Signature`. See [](/signing_data).
Delegation Delegation
OpenPGP users can [delegate authentication decisions](delegation) to third parties, and thus rely on {term}`certifications<Certification>` they issue. The remote party is then called a "{term}`trusted introducer`". OpenPGP users can [delegate authentication decisions](delegation) to third parties, and thus rely on {term}`certifications<Certification>` they issue. The remote party is then called a "{term}`trusted introducer`".
@ -330,7 +330,7 @@ OpenPGP Implementation
A piece of software implementing the OpenPGP protocol (to some extend). A piece of software implementing the OpenPGP protocol (to some extend).
OpenPGP Key OpenPGP Key
Used either for an {term}`OpenPGP Certificate` (containing public key material and metadata), or for an {term}`OpenPGP Private Key`. See [](/04-certificates) for an in-depth discussion. Used either for an {term}`OpenPGP Certificate` (containing public key material and metadata), or for an {term}`OpenPGP Private Key`. See [](/certificates) for an in-depth discussion.
OpenPGP Message OpenPGP Message
A data structure, which contains OpenPGP components such as {term}`OpenPGP Certificate` or {term}`OpenPGP Signature Packet` and plaintext or encrypted data. A data structure, which contains OpenPGP components such as {term}`OpenPGP Certificate` or {term}`OpenPGP Signature Packet` and plaintext or encrypted data.
@ -348,7 +348,7 @@ OpenPGP Signature
See {term}`OpenPGP Signature Packet`. See {term}`OpenPGP Signature Packet`.
OpenPGP Signature Packet OpenPGP Signature Packet
A {term}`packet` that contains a raw {term}`cryptographic signature`, a {term}`Signature Type ID` and additional {term}`metadata`. See [](/06-signatures). Basic concepts are introduced in [](/06-signatures) and more detailed use-cases are explained in [](/07-signing_data) and [](/08-signing_components). A {term}`packet` that contains a raw {term}`cryptographic signature`, a {term}`Signature Type ID` and additional {term}`metadata`. See [](/signatures). Basic concepts are introduced in [](/signatures) and more detailed use-cases are explained in [](/signing_data) and [](/signing_components).
OpenPGP Signature Subpacket OpenPGP Signature Subpacket
A data structure in a {term}`Signature Packet`, that describes {term}`metadata` and preferences. See [](signature_subpackets). A data structure in a {term}`Signature Packet`, that describes {term}`metadata` and preferences. See [](signature_subpackets).
@ -533,7 +533,7 @@ Signature Expiration Time Subpacket
See [RFC 5.2.3.18](https://www.ietf.org/archive/id/draft-ietf-openpgp-crypto-refresh-12.html#name-signature-expiration-time) See [RFC 5.2.3.18](https://www.ietf.org/archive/id/draft-ietf-openpgp-crypto-refresh-12.html#name-signature-expiration-time)
Signature On Component Signature On Component
{term}`Cryptographic signature` associated with {term}`Component Keys<Component Key>` or {term}`Identity Components<Identity Component>`. See [](/08-signing_components). {term}`Cryptographic signature` associated with {term}`Component Keys<Component Key>` or {term}`Identity Components<Identity Component>`. See [](/signing_components).
Signature Over Data Signature Over Data
See {term}`Data Signature`. See {term}`Data Signature`.
@ -615,7 +615,7 @@ Third-party Signature
A {term}`Signature` by a third-party on a {term}`Component` of a {term}`Certificate`. A {term}`Signature` by a third-party on a {term}`Component` of a {term}`Certificate`.
Transferable Secret Key Transferable Secret Key
A Transferable Secret Key (TSK) is the combination of an {term}`OpenPGP Certificate` and the associated {term}`private key material`. Also often referred to as an "OpenPGP private key". It is discussed in detail in [](/05-private). A Transferable Secret Key (TSK) is the combination of an {term}`OpenPGP Certificate` and the associated {term}`private key material`. Also often referred to as an "OpenPGP private key". It is discussed in detail in [](/private).
Trust Amount Trust Amount
A numerical value between `0` and `255`, stored in {term}`trust signatures<Trust Signature>` used for indicating the degree of reliance on the {term}`delegation`. A numerical value between `0` and `255`, stored in {term}`trust signatures<Trust Signature>` used for indicating the degree of reliance on the {term}`delegation`.

2
book/source/signatures.md
View file

@ -57,7 +57,7 @@ An overview of {term}`signature types<OpenPGP Signature Type>` in OpenPGP
This chapter will cover the overarching principles applicable to all {term}`OpenPGP signature types<OpenPGP Signature Type>`. This chapter will cover the overarching principles applicable to all {term}`OpenPGP signature types<OpenPGP Signature Type>`.
For more detail about specific {term}`types of signatures<OpenPGP Signature Type>`, see the chapters on {ref}`signing_data` and {ref}`component_signatures_chapter`, respectively. For more detail about specific {term}`types of signatures<OpenPGP Signature Type>`, see the chapters on [](/signing_data) and {ref}`component_signatures_chapter`, respectively.
## Structure of an OpenPGP signature packet ## Structure of an OpenPGP signature packet

1
book/source/signing_data.md
View file

@ -3,7 +3,6 @@ SPDX-FileCopyrightText: 2023 The "Notes on OpenPGP" project
SPDX-License-Identifier: CC-BY-SA-4.0 SPDX-License-Identifier: CC-BY-SA-4.0
--> -->
(signing_data)=
# Signatures over data # Signatures over data
In OpenPGP, a *{term}`data signature`* guarantees the {term}`authenticity<Authentication>` and, implicitly, the integrity of certain data. Typical use cases of {term}`data signatures<Data Signature>` include the {term}`authentication` of software packages and emails. In OpenPGP, a *{term}`data signature`* guarantees the {term}`authenticity<Authentication>` and, implicitly, the integrity of certain data. Typical use cases of {term}`data signatures<Data Signature>` include the {term}`authentication` of software packages and emails.