Re: how close is OpenPGP tied to SHA1

ietf-openpgp

2009-02-02 16:59:21


On Mon, Feb 2, 2009 at 8:04 PM, Jon Callas <jon(_at_)callas(_dot_)org> wrote:

The first question would be: Are SHA2 algorithms really more secure
than SHA1?

Yes.


Does it protect against the attacks recently found in SHA1?
Or is it "just" better, because the larger hash size?

If so one could think to switch for example to SHA512.


You could. This is what most people are doing.


Ok,.. but you cannot fully leave SHA1,.. you can only switch you
signature hash algorithm, as far as I know.
Right?

Or even wait for SHA3.


This is likely the best answer.


Does anyone know the state on SHA3?


Best wishes,
Peter

<Prev in Thread]	Current Thread	[Next in Thread>
how close is OpenPGP tied to SHA1, Peter Thomas Re: how close is OpenPGP tied to SHA1, Daniel Kahn Gillmor Re: how close is OpenPGP tied to SHA1, John Clizbe Re: how close is OpenPGP tied to SHA1, Peter Thomas Re: how close is OpenPGP tied to SHA1, Daniel Kahn Gillmor Re: how close is OpenPGP tied to SHA1, Peter Thomas Re: how close is OpenPGP tied to SHA1, Ian G Re: how close is OpenPGP tied to SHA1, David Crick Re: how close is OpenPGP tied to SHA1, Peter Thomas Re: how close is OpenPGP tied to SHA1, Jon Callas Re: how close is OpenPGP tied to SHA1, Peter Thomas <= Re: how close is OpenPGP tied to SHA1, Daniel Kahn Gillmor Re: how close is OpenPGP tied to SHA1, John Clizbe Re: how close is OpenPGP tied to SHA1, Ian G Re: how close is OpenPGP tied to SHA1, vedaal

Previous by Date:	Re: Series of minor questions about OpenPGP 6, Jon Callas
Next by Date:	Re: how close is OpenPGP tied to SHA1, Peter Thomas
Previous by Thread:	Re: how close is OpenPGP tied to SHA1, Jon Callas
Next by Thread:	Re: how close is OpenPGP tied to SHA1, Daniel Kahn Gillmor
Indexes:	[Date] [Thread] [Top] [All Lists]