[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [saag] SHA-1 to SHA-n transition

From: Peter Gutmann <pgut001 at cs.auckland.ac.nz>
To: ekr at networkresonance.com, Nicolas.Williams at sun.com
Cc: mouse at Rodents-Montreal.ORG, saag at ietf.org
Date: Wed, 04 Mar 2009 04:46:42 +1300
In-reply-to: <20090302181143.2B7B550822 at romeo.rtfm.com>

Eric Rescorla <ekr at networkresonance.com> writes:

>"We must do something. This is something. We must do this."

So you've got the choice between the Polician's Fallacy (the above) and
psychosis ("PKI has been failing for 30 years [0], let's try more of it in the
hope that it suddenly works this time").

I think we need psychiatrists for this more than we need security geeks.

(I don't know the answer either, but admitting you have a problem with your
current approach is always the first step to recovery).

Peter.

[0] Or 20 years if you measure your epoch from X.509 rather than Kohnfelder.

Follow-Ups:
- Re: [saag] SHA-1 to SHA-n transition
  - From: Hallam-Baker, Phillip
- Re: [saag] SHA-1 to SHA-n transition
  - From: Nicolas Williams

References:
- Re: [saag] SHA-1 to SHA-n transition
  - From: Eric Rescorla

Prev by Date: Re: [saag] SHA-1 to SHA-n transition
Next by Date: Re: [saag] SHA-1 to SHA-n transition
Previous by thread: Re: [saag] SHA-1 to SHA-n transition
Next by thread: Re: [saag] SHA-1 to SHA-n transition
Index(es):
- Date
- Thread

Note Well: Messages sent to this mailing list are the opinions of the senders and do not imply endorsement by the IETF.