Re: [openpgp] V5 Fingerprint again

ietf-openpgp

Re: [openpgp] V5 Fingerprint again

2017-03-01 15:02:02

1) Should we deprecate SHA1 in signatures? (Or did we already?)


This would break all existing signatures for no good reason.  Instead a

new v5

key format MUST NOT be used with signatures "weaker" than SHA-256.


Deprecation is not the same as obsoleting.  Deprecation doesn't break
existing signatures; it just says new signatures MUST NOT use SHA-1.

It sounds as if you're agreeing with the deprecation suggestion.  Or am I
badly misunderstanding something?


_______________________________________________
openpgp mailing list
openpgp(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/openpgp

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
[openpgp] V5 Fingerprint again, Phillip Hallam-Baker Re: [openpgp] V5 Fingerprint again, KellerFuchs Re: [openpgp] V5 Fingerprint again, Thijs van Dijk Re: [openpgp] V5 Fingerprint again, Thijs van Dijk Re: [openpgp] V5 Fingerprint again, Werner Koch Re: [openpgp] V5 Fingerprint again, Robert J. Hansen <= Re: [openpgp] V5 Fingerprint again, Werner Koch Re: [openpgp] V5 Fingerprint again, Thijs van Dijk Re: [openpgp] V5 Fingerprint again, Vincent Breitmoser Re: [openpgp] V5 Fingerprint again, Thijs van Dijk Re: [openpgp] V5 Fingerprint again, Vincent Breitmoser Re: [openpgp] V5 Fingerprint again, Werner Koch Re: [openpgp] V5 Fingerprint again, Leo Gaspard

Previous by Date:	Re: [openpgp] V5 Fingerprint again, Werner Koch
Next by Date:	Re: [openpgp] V5 Fingerprint again, Leo Gaspard
Previous by Thread:	Re: [openpgp] V5 Fingerprint again, Werner Koch
Next by Thread:	Re: [openpgp] V5 Fingerprint again, Werner Koch
Indexes:	[Date] [Thread] [Top] [All Lists]