Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection again



Dave Crocker wrote:

I believe we do need to have signature algorithm agility of some sort
for the reasons to do with hash weaknesses and also since there will
always be >1 favorite algorithm in a big world.

This scheme (or similar) may be a part of the way to provide that
agility. For now though, I don't understand well enough whether we
should worry about downgrade attacks when signing more than once.

having agility is different from adding mechanisms to defend againstattacks

against the use of that agility.


I agree.

S.


_______________________________________________

NOTE WELL: This list operates according tohttp://dkim.org/ietf-list-rules.html

<Prev in Thread]

Current Thread

[Next in Thread>

Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, (continued)
- Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Arvel Hathcock
- [ietf-dkim] Re: New Issue: Base: Upgrade indication and protection against downgrade attacks, Frank Ellermann
- Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Stephen Farrell
  - Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Michael Thomas
    - Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Dave Crocker
    - Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Steve Atkins
    - Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Dave Crocker
    - Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Stephen Farrell
    - Message not available
    - Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Dave Crocker
    - Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Stephen Farrell <=
    - Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Mark Delany
    - Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Dave Crocker
    - Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Mark Delany
    - Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Dave Crocker
    - Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Douglas Otis
    - Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Stephen Farrell
    - Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Mark Delany
    - Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Eliot Lear
    - Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Eliot Lear
  - Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Mark Delany

Previous by Date:

Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Mark Delany

Next by Date:

Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Dave Crocker

Previous by Thread:

Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Dave Crocker

Next by Thread:

Re: [ietf-dkim] New Issue: Base: Upgrade indication and protection against downgrade attacks, Mark Delany

Indexes:

[Date] [Thread] [Top] [All Lists]