On 16 March 2017 at 15:03, Peter Todd <pete(_at_)petertodd(_dot_)org> wrote:
Well, if that's the case, there's no reason to use less than a full 256
bits,
either SHA256 directly, or SHA512 truncated in the standard way.
Sure there is. From earlier in this thread:
On 8 March 2017 at 08:02, Werner Koch <wk(_at_)gnupg(_dot_)org> wrote:
Due to the use of the 'Issuer Fingerpint' the signatures grow in size by
22 octets which is substantal for ECC signatures. With the full V5
fingerprint this would increase to 25 octets (34 - 9 from the not used
'Issuer' subpacket). By truncating the fingerprint we will only use 18
octets which is even a saving compared to V4 keys.
_______________________________________________
openpgp mailing list
openpgp(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/openpgp