> An implementation MAY decrypt SKESKs using the deprecated S2K
> algorithm, but MUST NOT create new SKESKs using those algorithms.
Nope. That depends on the capabilities of the recipient.
OpenPGP currently offers great compatibility/interoperability. That's
not something I would want to see given away simply because S2K-3 is not
perceived hype-du-jour compliant without being an actual security problem.
+1 for S2K-3 as MAY algo
Regards,
Nils
_______________________________________________
openpgp mailing list
openpgp(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/openpgp