Re: Support for hash algorithms other than SHA-1

ietf-smime

Re: Support for hash algorithms other than SHA-1

2005-06-22 18:15:09


Russ Housley <housley(_at_)vigilsec(_dot_)com> writes:

Section 3.4.3.2 of RFC 3851 says:

   The SHA-256, SHA-384, and SHA-512 algorithms [FIPS180-2] are not
   currently recommended in S/MIME, and are included here for
   completeness.

I think it is time to revisit this decision.  I think the standard needs to
accept longer hash functions, at least with the RSA signature algorithm.


I'm not sure if this is meant as a call for votes, but making at least SHA-256
a SHOULD gets my grunt of approval.

(The reason for specifically mentioning SHA-256 is that the larger ones require
64-bit ops that are painful to handle on a number of systems).

Peter.

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
Support for hash algorithms other than SHA-1, Russ Housley Re: Support for hash algorithms other than SHA-1, Peter Gutmann <= Re: Support for hash algorithms other than SHA-1, Tony Hansen Re: Support for hash algorithms other than SHA-1, Peter Gutmann Re: Support for hash algorithms other than SHA-1, Blake Ramsdell Re: Support for hash algorithms other than SHA-1, Russ Housley Re: Support for hash algorithms other than SHA-1, Blake Ramsdell Re: Support for hash algorithms other than SHA-1, Paul Hoffman Re: Support for hash algorithms other than SHA-1, Peter Gutmann Re: Support for hash algorithms other than SHA-1, Blake Ramsdell Re: Support for hash algorithms other than SHA-1, Paul Hoffman Re: Support for hash algorithms other than SHA-1, Russ Housley

Previous by Date:	Support for hash algorithms other than SHA-1, Russ Housley
Next by Date:	Re: Support for hash algorithms other than SHA-1, Tony Hansen
Previous by Thread:	Support for hash algorithms other than SHA-1, Russ Housley
Next by Thread:	Re: Support for hash algorithms other than SHA-1, Tony Hansen
Indexes:	[Date] [Thread] [Top] [All Lists]