force-v4-certs and digest-algo
Brian M. Carlson
karlsson@hal-pc.org
Fri May 10 00:25:02 2002
--pY3vCvL1qV+PayAL
Content-Type: text/plain; charset=utf-8
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable
On Thu, May 09, 2002 at 02:44:43PM -0700, Len Sassaman wrote:
> On 9 May 2002, Robert J. Hansen wrote:
>=20
> > Not necessarily. The axiom which guides GnuPG is "be liberal in what
> > you accept, but conservative in what you generate". If I recall,
> > RIPEMD-160 is a SHOULD, not a MUST. It would be entirely consistent and
> > RFC-conformant for GnuPG to accept RIPEMD-160 in traffic, but to only
> > use SHA-1 for output.
>=20
> First of all: RIPEMD-160 is neither a MUST or a SHOULD. (It's neither a
> required, not suggested, algorithm in OpenPGP. Don't be surprised if
> implementations do not support or understand RIPEMD-160 signatures).
While this may be true, it is a de facto SHOULD, just like IDEA is.
=20
> Secondly, DSS is defined as requiring SHA-1. Consequently, SHA-1 has
> received more attention than other 160-bit hash algorithms by
> cryptographers. RIPEMD-160 is considered by many to be just as strong, but
> it certainly hasn't received the same level of scrutiny.
The last time I used my DSA key, other than to update its expiration date,
was over a year ago. I use my RSA key almost exclusively. When I don't, I
use my ElGamal type 20 key. (I know how you feel about ElGamal 20 keys ;-)
There is no reason that DSA couldn't use any other 160 bit hash. Neverthele=
ss,
I *do* use SHA1 with DSA.
> Notice, also, that the security of PGP signatures is somewhat dependant
> upon all of the hashes that the implementation allows. I draw your
> attention to section 13 of RCF 2440bis05:
<snip>
I am quite aware of the requirements for a collision-resistant hash functio=
n.
I own Applied Cryptography and have read it several times. I have also read
other works on the subject, including the definition of RIPEMD160.
--=20
Brian M. Carlson
<karlsson@hal-pc.org>
OpenPGP: 0x351336B2DCA1913A
--pY3vCvL1qV+PayAL
Content-Type: application/pgp-signature
Content-Disposition: inline
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.7 (GNU/Linux)
Comment: Ubi libertas, ibi patria.
iQEVAwUBPNr3buWR/8lWBVPnAQOEHgf/VW62sV76aCca5/02aJxU1XaFrmsmbdKg
wyrngl6Q+AwIp/aS7WdjJrcQtL7B1d71fxh6e8NsNj2t3Nxcn4FJka49EmFzyzFb
189PLjqEEYa5gbYVaMrr6MAhFxa1pJWegpTfuGzba8uLVXdowZku76xwvMArldMC
i7pSnUDmPUh1yUjgmPMnDDHktkXjt9UvbuU96VTu2yxD54oOqhCeArxuaSENjXhA
GJyhJy4u9X3ShCB78M5eVfdl25JdZu2D7TFPuxV4Uh0TOqDKadBvei+pQYsComVc
mn4qxdJ2iwpquYOhGixcmHjgiNeP5UrzJaI7jW/YdM+I70Y6yqzNIw==
=zbnQ
-----END PGP SIGNATURE-----
--pY3vCvL1qV+PayAL--