Add diagram for prefixed-signed message

2025-09-09 11:19:41 +02:00 · 2023-12-19 18:54:05 +01:00 · 2023-12-19 18:54:05 +01:00 · edc2c8322d
commit edc2c8322d
parent 70b6bd2f43
3 changed files with 74 additions and 1 deletions
--- a/book/source/signing_data.md
+++ b/book/source/signing_data.md
@ -76,7 +76,7 @@ A {term}`one-pass signed<One-pass signed Message>` {term}`OpenPGP message` consi

 ```{figure} plain_svg/ops-signed-message.svg
 :name: fig-ops-signed-message
-:alt: Depicts the structure of a one-pass-signed message.
+:alt: Depicts the structure of a one-pass-signed message. Two one-pass-signatures lead the literal data packet, followed by two signature packets. Arrows show, how the hash-algorithm field of the one-pass-signatures is inspected in order to initiate the hashing procedure.

 The structure of a one-pass signed message.
 ```
@ -126,6 +126,13 @@ In this format, the signature packets are stored ahead of the message itself:

 2. [**Literal data packet**](https://www.ietf.org/archive/id/draft-ietf-openpgp-crypto-refresh-12.html#lit): This contains the original data (e.g., the body of a message), without additional interpretation or conversion.

+```{figure} plain_svg/prefixed-signed-message.svg
+:name: fig-prefixed-signed-message
+:alt: Depicts the structure of a prefixed-signed message. As an example, two signature packets lead a literal data packet. Arrows show, how the signatures hash algorithm field is inspected to start the hashing procedure.
+
+Structure of a prefixed-signed message.
+```
+
 Compared to a {term}`one-pass signed message`, there are no {term}`one-pass signature packets<One-pass Signature Packet>` in this format, and the (otherwise equivalent) {term}`signature packet(s)<signature packet>` are stored ahead of the signed data.

 For verification, this is equally convenient as the one-pass signed message form.