From f8408dae3065689d35193809d2cae5c5d64b063c Mon Sep 17 00:00:00 2001 From: Heiko Schaefer Date: Tue, 12 Dec 2023 13:05:48 +0100 Subject: [PATCH] move generated images under img/ --- book/source/{ => img}/mermaid/09-sigtree.png | Bin book/source/{ => img}/mermaid/sig-types.png | Bin book/source/signatures.md | 2 +- book/source/verification.md | 2 +- 4 files changed, 2 insertions(+), 2 deletions(-) rename book/source/{ => img}/mermaid/09-sigtree.png (100%) rename book/source/{ => img}/mermaid/sig-types.png (100%) diff --git a/book/source/mermaid/09-sigtree.png b/book/source/img/mermaid/09-sigtree.png similarity index 100% rename from book/source/mermaid/09-sigtree.png rename to book/source/img/mermaid/09-sigtree.png diff --git a/book/source/mermaid/sig-types.png b/book/source/img/mermaid/sig-types.png similarity index 100% rename from book/source/mermaid/sig-types.png rename to book/source/img/mermaid/sig-types.png diff --git a/book/source/signatures.md b/book/source/signatures.md index 43836ea..b1d82b7 100644 --- a/book/source/signatures.md +++ b/book/source/signatures.md @@ -48,7 +48,7 @@ The OpenPGP standard defines a set of [Signature types](https://www.ietf.org/arc - the origin of the {term}`signature`, distinguishing between a {term}`self-signature` and a {term}`third-party signature` - the nature of the statement made by the {term}`signature`, such as certifying an {term}`identity` or binding {term}`component keys` into a {term}`certificate` -```{figure} mermaid/sig-types.png +```{figure} img/mermaid/sig-types.png :name: fig-signature-types :alt: Depicts a diagram, describing different types of OpenPGP signatures. On the right hand side a long yellow box with the title "Signature Types and Targets" is shown, which contains signature type IDs and their names (in gray boxes) and further yellow boxes, grouping other types of signature type IDs. At the top the signature type ID "0x02 Standalone" is shown. Below, another yellow box groups the "Signature Packet"s "0x50 Third-Party Confirmation" and "0x40 Timestamp". Another box groups types of signatures, that apply to "Data" packets "0x00 Binary Data" and "0x01 Canonical Text". Below, a box groups types of signatures, that apply to "Primary Key + User ID/ Attr. Packet"s. The type IDs "0x10 Generic Certification", "0x11 Persona Certification", "0x12 Casual Certification" and "0x13 Positive Certification" are shown together in one gray box and "0x30 Certification Revocation" in another. Another yellow box groups types of signatures, that apply to "Primary Key" packets "0x1F Direct-Key Signature" and "0x20 Key Revocation". The last box groups types of signatures, that apply to "Primary + Subkey" packets. "0x18 Subkey Binding" and "0x19 Primary Key Binding" are shown together in one gray box, "0x28 Subkey Revocation" in another. On the left hand side of the diagram shows gray boxes identifying different types of signatures, with the most basic being "OpenPGP Signature" on the far left. With arrows it points to further signature types ("Signature on Data", "Signature on Component") and several signature type IDs ("0x02", "0x50" and "0x40"). The signature type "Signature on Data" points to "0x00" and "0x01". The signature type "Signature on Component" points to two more specific signature types, namely "Third-Party" and "Self-Signature". "Third-Party" points at the group of "0x10", "0x11", "0x12" and "0x13", as well as "0x30" and "0x1F". "Self-Signature" points at the group of "0x10", "0x11", "0x12" and "0x13", as well as "0x30", "0x1F", the group of "0x18" and "0x19" and finally "0x28". diff --git a/book/source/verification.md b/book/source/verification.md index 67de536..7e4002b 100644 --- a/book/source/verification.md +++ b/book/source/verification.md @@ -102,7 +102,7 @@ This construct is referred to as a [revocation certificate](https://www.ietf.org On the other hand, to verify a data signature over a text document, an implementation needs to verify not only the data signature itself, but also the binding signature (and back-signature) of the signing subkey which qualifies the signing subkey. -```{figure} mermaid/09-sigtree.png +```{figure} img/mermaid/09-sigtree.png :name: fig-signature-verification-signature-tree :alt: Depicts a diagrammatic representation of a certificate and a data signature. Arrows between the primary key and other components of the certificate show, how signatures bind the certificate together. In this example, they form a tree of signatures, which all need to be verified in order for the data signature to be valid.