Who protects the private key
Werner Koch
wk at gnupg.org
Mon Feb 21 19:17:37 CET 2022
On Sat, 19 Feb 2022 15:52, Robert J. Hansen said:
> As part of an iterated key derivation function, SHA-1 is still believed safe.
> There's no reason to shy away from it, or AES128.
FWIW: SHA-1 is also used has part of the OpenPGP MDC construction. This
is something alike a MAC and there are not signs anyware that this
construction is broken. In fact, it was part of the first widely
deployed AE algorithm (in 2001).
Shalom-Salam,
Werner
--
Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 227 bytes
Desc: not available
URL: <https://lists.gnupg.org/pipermail/gnupg-users/attachments/20220221/ec545197/attachment.sig>
More information about the Gnupg-users
mailing list