<table><tr><td style="">aheinecke added a comment.
</td><a style="text-decoration: none; padding: 4px 8px; margin: 0 8px 8px; float: right; color: #464C5C; font-weight: bold; border-radius: 3px; background-color: #F7F7F9; background-image: linear-gradient(to bottom,#fff,#f1f0f1); display: inline-block; border: 1px solid rgba(71,87,120,.2);" href="https://phabricator.kde.org/D3432" rel="noreferrer">View Revision</a></tr></table><br /><div><div><p>Last week we had a meeting in our Team and with the customer and afterwards a gnupg-developer meeting where we discussed how TOFU should be implemented in MUA's. I've used my TOFU Support in GpgOL to demo this and after discussion there were some good points raised. We agreed that I'll write an updated draft how I am planning to use TOFU in GpgOL and how we are planning to use it In KMail and then do another round of discussion so that this can be an "implementors" guide for TOFU usage. As we also want to get it into enigmail etc.</p>
<p>I'll ping in this issue once I've done that. I plan to do it this week.</p></div></div><br /><div><strong>INLINE COMMENTS</strong><div><div style="margin: 6px 0 12px 0;"><div style="border: 1px solid #C7CCD9; border-radius: 3px;"><div style="padding: 0; background: #F7F7F7; border-color: #e3e4e8; border-style: solid; border-width: 0 0 1px 0; margin: 0;"><div style="color: #74777d; background: #eff2f4; padding: 6px 8px; overflow: hidden;"><a style="float: right; text-decoration: none;" href="https://phabricator.kde.org/D3432#inline-13877" rel="noreferrer">View Inline</a><span style="color: #4b4d51; font-weight: bold;">knauss</span> wrote in <span style="color: #4b4d51; font-weight: bold;">defaultrenderer.cpp:1008</span></div>
<div style="margin: 8px 0; padding: 0 12px; color: #74777D;"><p style="padding: 0; margin: 8px;">well if it is unknon we should better use Tofu, this is for sure better than Unknown.</p></div></div>
<div style="margin: 8px 0; padding: 0 12px;"><p style="padding: 0; margin: 8px;">I trust model TOFU a key is only Unkown if there were no messages seen from this key. The first signature check already results in Marginal.</p></div></div><br /><div style="border: 1px solid #C7CCD9; border-radius: 3px;"><div style="padding: 0; background: #F7F7F7; border-color: #e3e4e8; border-style: solid; border-width: 0 0 1px 0; margin: 0;"><div style="color: #74777d; background: #eff2f4; padding: 6px 8px; overflow: hidden;"><a style="float: right; text-decoration: none;" href="https://phabricator.kde.org/D3432#inline-13880" rel="noreferrer">View Inline</a><span style="color: #4b4d51; font-weight: bold;">knauss</span> wrote in <span style="color: #4b4d51; font-weight: bold;">messagepart.cpp:889</span></div>
<div style="margin: 8px 0; padding: 0 12px; color: #74777D;"><p style="padding: 0; margin: 8px;">and what about Validity::Unknown?</p></div></div>
<div style="margin: 8px 0; padding: 0 12px;"><p style="padding: 0; margin: 8px;">From the first message on TOFU switches validity to marginal. Unkown + TOFU Info is only reached if the user set the key explicitly to policy "Unknown" which is then handled by the default "Unknown" handling.</p></div></div><br /><div style="border: 1px solid #C7CCD9; border-radius: 3px;"><div style="padding: 0; background: #F7F7F7; border-color: #e3e4e8; border-style: solid; border-width: 0 0 1px 0; margin: 0;"><div style="color: #74777d; background: #eff2f4; padding: 6px 8px; overflow: hidden;"><a style="float: right; text-decoration: none;" href="https://phabricator.kde.org/D3432#inline-13879" rel="noreferrer">View Inline</a><span style="color: #4b4d51; font-weight: bold;">knauss</span> wrote in <span style="color: #4b4d51; font-weight: bold;">messagepart.cpp:920</span></div>
<div style="margin: 8px 0; padding: 0 12px; color: #74777D;"><p style="padding: 0; margin: 8px;">this is a little bit strage, to read a number here and not anything from gpgme, does that means, that gpg do not give hints, when a key is trust worthy?</p>
<p style="padding: 0; margin: 8px;">why is 10 a good number? Is there any discussion about this threshold?</p></div></div>
<div style="margin: 8px 0; padding: 0 12px;"><p style="padding: 0; margin: 8px;">10 is the old value for tofuinfo.validity "Basic History". GnuPG changed "Basic History" to include the encryption count. This may make sense for the command line usecase (although I disagree about that, too) but it does not for MUAs. I've discussed this at length with the implementor of the TOFU Support in GnuPG and we agreed that different use cases may use the signcount / enccount differently and gnupg's "TOFU" validity is only a hint.</p>
<p style="padding: 0; margin: 8px;">But it's a good point, the discussion should have been on a mailing list (we discussed over phone / or in person) and the rationale for this outlined somewhere.</p></div></div></div></div></div><br /><div><strong>REPOSITORY</strong><div><div>R94 PIM: Message Library</div></div></div><br /><div><strong>REVISION DETAIL</strong><div><a href="https://phabricator.kde.org/D3432" rel="noreferrer">https://phabricator.kde.org/D3432</a></div></div><br /><div><strong>EMAIL PREFERENCES</strong><div><a href="https://phabricator.kde.org/settings/panel/emailpreferences/" rel="noreferrer">https://phabricator.kde.org/settings/panel/emailpreferences/</a></div></div><br /><div><strong>To: </strong>dvratil, knauss, aheinecke<br /><strong>Cc: </strong>kde-pim, spencerb, dvasin, winterz, vkrause, mlaurent, knauss, dvratil<br /></div>