Differences: OpenPGP vs. X.509

Robert J. Hansen rjh at sixdemonbag.org
Sat Jan 24 18:11:01 CET 2009


Stefan X wrote:
> As explained before I see huge benefits in case one format
> would be used instead of two.

X.509 is effectively dead.  The protocol has a lot of hardwired
dependencies on MD5, and the ongoing attacks against MD5 are
below-the-waterline holes on X.509.

X.509 may be overhauled to repair the damage, or it may be discarded.
We don't know at this point.  This makes it very premature to talk about
any kind of merging of standards.





More information about the Gnupg-devel mailing list