ietf-smime
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Support for hash algorithms other than SHA-1

2005-06-27 22:12:09
from [Blake Ramsdell] [Permanent Link] 

On Jun 27, 2005, at 9:59 PM, Peter Gutmann wrote:

Blake Ramsdell <blake(_at_)sendmail(_dot_)com> writes:
Personally, I would upgrade 384 and 512 to SHOULD (no "+"). The semantic of 
that is "there may exist valid reasons in particular circumstances to
ignore". If you can't do 64-bit easily or the performance makes you crabby, then you can invoke that clause. I don't really feel strongly enough about it 
to fight for this though.


I would argue strongly for just having a single algorithm to support


Sounds like a trend to me.

So Russ's's elaboration on your suggestion, resummarized by me here:

On Jun 27, 2005, at 10:51 AM, Russ Housley wrote:

So, building on what Peter Gutmann suggested:

      sha1WithRSAEncryption would be a MUST-

      sha224WithRSAEncryption would be a MAY

      sha256WithRSAEncryption would be a SHOULD+

      sha384WithRSAEncryption would be a MAY

      sha512WithRSAEncryption  would be a MAY


Seems to reflect where you, Paul, Russ and I come down on this.

Blake
--
Blake Ramsdell | Sendmail, Inc. | http://www.sendmail.com
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Support for hash algorithms other than SHA-1, Peter Gutmann
Next by Date:  RE: Support for hash algorithms other than SHA-1, Alberti Antoine
Previous by Thread:  Re: Support for hash algorithms other than SHA-1, Peter Gutmann
Next by Thread:  Re: Support for hash algorithms other than SHA-1, Paul Hoffman
Indexes:  [Date] [Thread] [Top] [All Lists]