ietf-openpgp
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Hash Collision Shield (subpacket def)

2005-02-17 19:22:43
from [Jon Callas] [Permanent Link] 

On 17 Feb 2005, at 9:17 AM, David Shaw wrote:


I think we should not do this for several reasons, but those reasons
don't matter much: we already have signature notations.  If someone
wants to add arbitrary stuff in the middle of their signatures, they
can do that now.



I agree completely. Notations are the way to do this.
However, I also think this is a very bad idea. We already have pulled things out of OpenPGP because they could be used for subliminal channels, and there are a lot of people who think that DSA is the work of Satan because it has random data and thus subliminal channels.
However, if someone wishes to add in extra random data, then a notation is a fine way to do it. 

        Jon
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Hash Collision Shield (subpacket def), "Hal Finney"
Next by Date:  Re: Comments on draft-ietf-openpgp-rfc2440bis-12, Jon Callas
Previous by Thread:  Re: Hash Collision Shield (subpacket def), David Shaw
Next by Thread:  Re: Hash Collision Shield (subpacket def), Rick van Rein
Indexes:  [Date] [Thread] [Top] [All Lists]