Encrypted secret keys can be protected with SHA1 or with a two-octet
checksum. Unencrypted secret keys can only be protected with a two-octet
checksum.
What is the intended purpose of this integrity protection? What are the
security issues with using the weaker checksum over SHA1? Are these
security issues not present on an unencrypted secret key?
--
Stephen Paul Weber, @singpolyma
See <http://singpolyma.net> for how I prefer to be contacted
edition right joseph
signature.asc
Description: Digital signature
_______________________________________________
openpgp mailing list
openpgp(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/openpgp