SHA3 IANA registration - method?

Daniel Kahn Gillmor dkg at
Fri Dec 14 19:11:37 CET 2012

On 12/14/2012 12:55 PM, Andrey Jivsov wrote:
> The use of fingerprints in OpenPGP
> should be viewed as dependent on collision resistance of the hash
> function,

My recollection from the review and discussion i participated in was
that the OpenPGP fingerprint's security was dependent on the preimage
resistance of the hash function, not on the collision resistance.

If that's correct, OpenPGP should be OK on the fingerprint for a while
yet (modulo some organizations that just want to be rid of "old" digest
algorithms without understanding the nuances in where they're used).

Can you describe an attack that might show how weak collision resistance
could compromise the fingerprint?



More information about the Gnupg-devel mailing list