ietf-openpgp
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [openpgp] v5 in the crypto-refresh draft

2021-06-05 13:16:38
from [Paul Wouters] [Permanent Link] 
On Sat, 5 Jun 2021, Daniel Kahn Gillmor wrote:


Furthermore, having to constantly
defend the use of SHA-1 when it is known to be deprecated *in other
contexts* is a tiresome exercise, and i think it'd be great if the
OpenPGP community could move past it.


This is the main argument for me. Crypto libraries are trying to phase
out and disable SHA-1. Some crypto libraries have API's that allow
the caller to say "yes I know, you can trust my use of it" but not
all libraries have that. So it is useful to just move from SHA-1 to
SHA2 for this reason alone.

Paul

_______________________________________________
openpgp mailing list
openpgp(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/openpgp
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [openpgp] v5 in the crypto-refresh draft, Daniel Kahn Gillmor
Next by Date:  Re: [openpgp] [RFC4880bis PATCH] WIP: bind wire format representations to specific pubkey algorithms, Florian Weimer
Previous by Thread:  Re: [openpgp] v5 in the crypto-refresh draft, Daniel Kahn Gillmor
Next by Thread:  Re: [openpgp] v5 in the crypto-refresh draft, Michael Richardson
Indexes:  [Date] [Thread] [Top] [All Lists]