Changes between Version 2 and Version 3 of PluginRepository/Encryption


Ignore:
Timestamp:
Jul 30, 2009 10:14:21 PM (4 years ago)
Author:
dan
Comment:

+storage api, global options

Legend:

Unmodified
Added
Removed
Modified

  • PluginRepository/Encryption

    v2 v3  
    11== Encryption == 
    22 
    3 '''on this page thoughts about the development of an encrpytion plugin will be shared.''' 
     3'''on this page thoughts about the development of an encryption plugin will be shared.''' 
    44 
    55quick brainstorming (jonas): 
    66see [http://lists.roundcube.net/mail-archive/dev/2009-07/0000143.html RoundCube-Dev Thread] for discussion on the mailinglist. 
    7  
    87 
    98 * add some abstraction layer to support several implementations of gnupg key management 
     
    2827   * list_priv_keys(): list all private keys 
    2928   * gen_priv_key(): generate new private key 
     29   * get_key(email/keyid): get a new public key 
    3030 * for mail layer: 
    3131   * decrypt inline encrypted mails 
     
    3636   * encrypt and/or sign outgoing mails inline 
    3737 
     38 * storage interface(?): Interface to keys implemented by drivers 
     39   * encrypt(text,keys) 
     40   * decrypt(text, passphrase_callback) 
     41   * sign(text,keys,passphrase_callback) 
     42   * verify(text) 
     43 
    3844 * for server side storage: 
    3945   * create gnupg home directories with pubring.gpg and secring.gpg for every single user 
    40    * pass $GNUGPGHOME to gnupg/gpgme library according to roundtube user 
     46   * pass $GNUGPGHOME to gnupg/gpgme library according to roundcube user 
    4147   * requirement to give read+write access to webserver user to all gnupg home directories 
    4248   * maybe maintain a mysql database with all keys, fingerprints etc to detect manipulated 
    4349     key data in the keyrings. 
     50   * public keys retrieval - ldap, keyserver lookup, database 
    4451 
    45  * additional useful settings/options: 
     52 * additional useful user settings/options: 
    4653   * default private key to sign mails 
    4754   * default public key to encrypt mails for in addition to recipient keys (i.e. own key) 
     
    5057   * default for replies to unsigned and unencrypted mails 
    5158 
     59 * additional useful global settings/options: 
     60   * backend plugin(s) 
     61   * ldap servers and query method 
     62   * keyservers 
     63   * default public key to encrypt mails for in addition to recipient keys (i.e. escrow) 
     64 
    5265please extend this design draft with your thoughts ...