ietf-smime
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: S/MIME v3.2 IDs key size text

2008-05-12 07:01:00
from [Timothy J Miller] [Permanent Link] 

On May 9, 2008, at 4:40 PM, Paul Hoffman wrote:


At 12:37 PM -0400 5/6/08, Turner, Sean P. wrote:


  0 < key size < 511  : MUST NOT
512 < key size < 1023 : SHOULD-
Beyond what Russ just pointed out, I find the first line to be in bad taste. Any IETF spec that says "you must not be able to verify a signature even though it is valid" is pretty offensive.
How about adding a "MUST warn the user that key is too damn short to be considered safe, even though the signature is valid" clause instead? 

-- Tim

Attachment: smime.p7s
Description: S/MIME cryptographic signature

[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: S/MIME v3.2 IDs key size text, Paul Hoffman
Next by Date:  RE: S/MIME v3.2 IDs key size text, Carl Wallace
Previous by Thread:  RE: S/MIME v3.2 IDs key size text, Paul Hoffman
Next by Thread:  RE: S/MIME v3.2 IDs key size text, Carl Wallace
Indexes:  [Date] [Thread] [Top] [All Lists]