On Sat, 5 Jun 2021, Daniel Kahn Gillmor wrote:
Furthermore, having to constantly
defend the use of SHA-1 when it is known to be deprecated *in other
contexts* is a tiresome exercise, and i think it'd be great if the
OpenPGP community could move past it.
This is the main argument for me. Crypto libraries are trying to phase
out and disable SHA-1. Some crypto libraries have API's that allow
the caller to say "yes I know, you can trust my use of it" but not
all libraries have that. So it is useful to just move from SHA-1 to
SHA2 for this reason alone.
Paul
_______________________________________________
openpgp mailing list
openpgp(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/openpgp