-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
I agree. Further I am not sure whether we should do this full
fingerprint proposal right now or better wait for SHA-3. If we would
settle now for a new fingerprint signature subpacket we will for sure
need to revise that for SHA-3. We would need to maintain code for the
current fingerprint as well as for a SHA-3 for a little eternity.
If we combine it with a hash-independent fingerprint -- e.g., first byte is an
algorithm ID, others are the actual hash -- then we can put it in now and then
run with it.
Jon
-----BEGIN PGP SIGNATURE-----
Version: PGP Universal 2.10.0 (Build 554)
Charset: us-ascii
wj8DBQFNNdJvsTedWZOD3gYRAuSFAJ4/4MtnU/FgAJrEmvfHJdF94Lut+gCgirkD
GcLhz9vEEss8t4o1uLM5qSg=
=i+IA
-----END PGP SIGNATURE-----