Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection again


Mark,

Now that I've reset the brain a bit:-)

Mark Delany wrote:

The gap created by the signer is the problem here so the rule needs to
be that a signer must sign from strongest to weakest, WITH NO GAPS.


The assumption that all signers and verifiers have the same idea of an
absolute strength-order for hash algorithms is a bit optimistic.

For example, some countries do insist on national algorithms being
supported - see rfc 4357 for example. I don't think I want to get into
a dispute about whether the Gost-hash is better or worse than sha-256
(or whatever) - do you?

Stephen.

_______________________________________________

NOTE WELL: This list operates according tohttp://dkim.org/ietf-list-rules.html

<Prev in Thread]	Current Thread	[Next in Thread>
Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, (continued) Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Mark Delany Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Stephen Farrell Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Eliot Lear Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Douglas Otis [ietf-dkim] Supporting alternate algorithms, Dave Crocker [ietf-dkim] Re: Supporting alternate algorithms, Stephen Farrell Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Eric Allman Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Stephen Farrell Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Arvel Hathcock [ietf-dkim] Re: New Issue: Base: Upgrade indication and protection against downgrade attacks, Frank Ellermann Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Stephen Farrell <= Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Michael Thomas Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Dave Crocker Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Steve Atkins Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Dave Crocker Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Stephen Farrell Message not available Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Dave Crocker Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Stephen Farrell Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Mark Delany Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Dave Crocker Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Mark Delany

Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks