At 04:53 PM 9/16/97 -0400, William H. Geiger III wrote:
Is there any actual restrictions that DSS *must* use SHA1? It should be
able to use any hash that the user selects. It is my understanding that
the hash algorithim & the encryption algorithm should be independent of
each other (I could be wrong as I have not done an indepth study of that
section of code in 5.0).
There is kinda sorta a restriction that DSS must use SHA1. DSS is the
Digital Signature Standard, and part of that standard is the Secure Hash
Algorithm. If you're not using SHA1, then you're not following that
standard. So, as far as Layer Nine (the political layer) is concerned, you
have to, but the math is a different question. A signature system that uses
DSA with RIPEMD160 may be perfectly valid, but it's not DSS.
That's why I said "kinda sorta." It's certainly germane to this list to
discuss DSS variants, but they're not DSS.
Jon
-----
Jon Callas jon(_at_)pgp(_dot_)com
Chief Scientist 555 Twin Dolphin Drive
Pretty Good Privacy, Inc. Suite 570
(415) 596-1960 Redwood Shores, CA 94065