%% You should probably cite draft-atkins-openpgp-device-certificates-04 instead of this revision. @techreport{atkins-openpgp-device-certificates-03, number = {draft-atkins-openpgp-device-certificates-03}, type = {Internet-Draft}, institution = {Internet Engineering Task Force}, publisher = {Internet Engineering Task Force}, note = {Work in Progress}, url = {https://datatracker.ietf.org/doc/draft-atkins-openpgp-device-certificates/03/}, author = {Derek Atkins}, title = {{OpenPGP Extensions for Device Certificates}}, pagetotal = 9, year = 2015, month = jun, day = 10, abstract = {The OpenPGP Message Formats defined in RFC 4880 specify packet formats and methods for combining those packets to form messages and certificates. However RFC 4880 made an architectural decision that keys are owned by users and must be self-certified. New use cases have emerged where that is not the case. There is a desire to have certificates that are not tied to a user (e.g. device certificates) which may only have encryption keys so may not be self certifiable. Moreover, devices might be space constrained so reducing size is important. This draft specifies extensions to (and updates) RFC 4880 that loosen the definitions of certificates in order to enable userless certificates without self-certifications and specifies a set of notations to enable compact device certifications.}, }