Re: [Sam Hartman] Openpgp comments

ietf-openpgp

Re: [Sam Hartman] Openpgp comments

2006-09-19 02:09:35

from [Ian G]


David Shaw wrote:

On Mon, Sep 18, 2006 at 11:02:44AM -0400, Derek Atkins wrote:

The second issue is the encryption with integrity packet.  Today this
is hard-wired to use SHA-1.  That's not OK.  We need an upgrade path
for that and I think we need to support SHA-256 now.


Does the MDC actually need collision resistance?  I was under the
impression that (like the secret key "S2K 254" use of SHA-1) this was
essentially a checksum and the recent attacks against SHA-1 did not
apply.



Yes, that was my question too.

iang

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Re: [Sam Hartman] Openpgp comments, (continued) Re: [Sam Hartman] Openpgp comments, David Shaw Re: [Sam Hartman] Openpgp comments, Ian G Re: [Sam Hartman] Openpgp comments, Jon Callas Re: [Sam Hartman] Openpgp comments, David Shaw Re: [Sam Hartman] Openpgp comments, Daniel A. Nagy RE: [Sam Hartman] Openpgp comments, Anton Stiglic Re: [Sam Hartman] Openpgp comments, Werner Koch Re: [Sam Hartman] Openpgp comments, Lutz Donnerhacke Re: [Sam Hartman] Openpgp comments, Marko Kreen Re: [Sam Hartman] Openpgp comments, David Shaw Re: [Sam Hartman] Openpgp comments, Ian G <= Re: [Sam Hartman] Openpgp comments, Daniel A. Nagy Re: [Sam Hartman] Openpgp comments, "Hal Finney"

Previous by Date:	Re: [Sam Hartman] Openpgp comments, David Shaw
Next by Date:	Re: [Sam Hartman] Openpgp comments, Werner Koch
Previous by Thread:	Re: [Sam Hartman] Openpgp comments, David Shaw
Next by Thread:	Re: [Sam Hartman] Openpgp comments, Daniel A. Nagy
Indexes:	[Date] [Thread] [Top] [All Lists]