Re: S/MIME winz

I would imagine that the majority of S/MIME implementations are based on
RSADSI's BSafe. In my phone conversations with RSADSI last week they made
it plain in no uncertian terms that they will *not* be supporting these
unencumbered algorithms and their position is that DH/DSS is "untested"
and "insecure" (Their basic position is if it's not from RSADSI it's not
"secure").


Have just been looking at the S/Mime v3 spec page 25 section 12 at 
http://www.imc.org/draft-ietf-smime-cms and the MUST impliment includes
DSS, SHA-1, D-H (x9.42) and triple DES CBC (three keys - 168 bit).

MAY impliment includes the proprietary RSA mechanisms.

If this stays that way there is no reason why PGP could not be S/MIME
compliant. Will say that the crypto (other than being intercommunicating)
is really the least part - it is the directory and key management structure
that will make or break. At the moment it is the only one I have seen that 
is independant of a mail structure and provides for diversified management.
(opposing views welcome).
                                        Warmly,
                                                Padgett

<Prev in Thread]	Current Thread	[Next in Thread>
S/MIME winz, A. Padgett Peterson P.E. Information Security Re: S/MIME winz, Paul Hoffman / IMC Re: S/MIME winz, William H. Geiger III Re: S/MIME winz, David P. Kemp Re: S/MIME winz, William H. Geiger III Re: S/MIME winz, Dave Crocker Re: S/MIME winz, Lutz Donnerhacke Re: S/MIME winz, Paul Hoffman / IMC Re: S/MIME winz, A. Padgett Peterson P.E. Information Security <= Re: S/MIME winz, Lutz Donnerhacke Re: S/MIME winz, Bill Stewart

Previous by Date:	Re: Proposal for new Attribute packet, Jon Callas
Next by Date:	Re: Proposal for new Attribute packet, Hal Finney
Previous by Thread:	Re: S/MIME winz, Paul Hoffman / IMC
Next by Thread:	Re: S/MIME winz, Lutz Donnerhacke
Indexes:	[Date] [Thread] [Top] [All Lists]