Up to "New MUST algorithms" the topics are from dkg's list.
Update the fingerprint format (avoid inclusion of creation date, use stronger digest algorithm; i'm dubious about embedding algorithm agility in the fingerprint itself, but explicit version info in the fingerprint might be reasonable so we don't have to keep guessing by fpr structure for future versions)
get rid of keyids entirely -- when referring to a key, use the fingerprint where a compact hint is needed (e.g. in a replacement of the issuer subpacket) or the full primary key where it is more sensitive (e.g. in designated revoker). With EC keys, we could consider using the full key (not the full cert) even in the issuer subpacket case, which could make things cleaner.
clarify that cleartext signatures should all use charset/encoding UTF-8.
update S2K with something more modern (PBKDF2, scrypt?), deprecate all the other mechnanisms explicitly
- Jon Callas suggests the use of PBKDF2.
- Peter Gutmann suggests to wait for the outcome of PHC and use that.
- Nils Durner maintains a patch for RFC4880bis to include the PHC winner Argon2i
standardize the two new curves coming out of the CFRG: 25519 and curve448 ("goldilocks") for both signatures and encryption (Werner has already started this process for 25519 signatures)
remove compression entirely
clean up the language: clearly distinguish between "public key" and "certificate", and ensure that the use of the terms "trust" and "validity", if still present, are used unambiguously.
Literal data packet
Deprecated 3DES et al.
deprecate 3DES, IDEA, and as many of the weaker ciphers as we can get away with.
New MUST algorithms
New key flags
- A new key flag to support GNS
New notation data
In the past we add a few requests for new IETF namespace notations:
- "nick" for GNS
- Define application/pgp-message for binary OpenPGP messages
- Define application/pgp-keydata for binary OpenPGP keys
- Remove the micalg parameter