I agree that the cmsalg proposed change would increase the consistency of
the use of the md5WithRSAEncryption, sha1WithRSAEncryption, and
rsaEncryption OIDs in PKIX X.509 certificates and CMS signedData content
types. However, I don't believe that the increase in consistency would be
worth breaking backwards compatibility with legacy CMS implementations.
Before we make a decision, I believe that we need further input from the
various implementers so that we know the extent to which this change would
break backwards compatibility with legacy CMS implementations.
John Pawling, John(_dot_)Pawling(_at_)GetronicsGov(_dot_)com
Getronics Government Solutions, LLC