| CC: | Ivan Shmakov <oneingray [...] gmail.com> |
| Subject: | new Crypt::OpenPGP::Signature () to accept a pre-computed digest |
| Date: | Mon, 13 Sep 2010 22:38:09 +0700 |
| To: | bug-Crypt-OpenPGP [...] rt.cpan.org |
| From: | Ivan Shmakov <ivan [...] main.uusia.org> |
[Please consider the following wishlist item regarding
Crypt-OpenPGP-1.04.]
[Please consider me an OpenPGP newbie.]
Currently, the Crypt::OpenPGP::Signature constructor expects the
actual signature data to be passed. However, it should be just
as well be possible to substitute a pre-computed digest for the
data (as, IIUC, all the constructor has to do with the data is
to compute the digest.)
This way, Alice could compute SHA-1 at work, write it on a piece
of paper, and then, after returning home, produce a digital
signature for the original file without bringing it with her.
Or, Bob could extract the digests from the Debian-signed
Packages list file and sign individual Debian packages without
actually downloading them.
(But actually, I've been thinking about inventing yet another
digital signature format, which, thanks to the function
requested, it would be easy to convert into an OpenPGP
signature.)
--
FSF associate member #7257. SFD in Barnaul: http://sfd.am-1.org/
Message body not shown because it is not plain text.