ietf-dkim
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[ietf-dkim] Going to a single hash algorithm

2006-03-25 09:43:54
from [Paul Hoffman] [Permanent Link] 
At 6:54 PM -0500 3/24/06, Barry Leiba wrote:

Suppose the base doc said this sort of thing:

---------------------------------------------------------
... signers MUST use a=rsa-sha256 ...
. . .
This is a *very* bad idea. SHA-256 has been around for a relatively short period of time. It has different block sizes than the other hashes that have been analyzed over the past decade, it uses different types of rounds, and so on. Mandating a single algorithm that is new and fairly untested (even though it seems bigger and stronger) is very, very risky.
We should stick with the wording agreed to in the f2f meeting (after getting consensus on the list), namely: 

At 1:10 PM -0800 3/20/06, Hallam-Baker, Phillip wrote:

Receivers MUST implement SHA-1 and SHA-256
Signers MUST implement SHA-256
Signers SHOULD use SHA-256


_______________________________________________
NOTE WELL: This list operates according to http://mipassoc.org/dkim/ietf-list-rules.html
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [ietf-dkim] Splitting the DKIM base doc, Stephen Farrell
Next by Date:  Re: [ietf-dkim] 1193 considered harmful, Paul Hoffman
Previous by Thread:  Re: [ietf-dkim] 1193 considered harmful, Hector Santos
Next by Thread:  Re: [ietf-dkim] 1193 considered harmful, Paul Hoffman
Indexes:  [Date] [Thread] [Top] [All Lists]