ietf-smime
[Top] [All Lists]

RE: SignatureAlgorithmIdentifiers

1998-07-10 15:44:20
At 02:39 PM 7/10/98 -0700, Blake Ramsdell wrote:
If we use the same OIDs used in PKIX for certificate signatures, it
makes it easier for implementors, but it could affect backwards
compatibility.

"could affect" means "break". I'm completely against changing this OID if
it causes messages from v3 clients to not be readable by v2 clients just so
we have nicer-looking OIDs. I think we should leave this alone, and when we
add the DSA alg (which I'm working on), the OID will be DSA-with-SHA-1.

--Paul Hoffman, Director
--Internet Mail Consortium