Re: [TLS] Last Call: draft-ietf-tls-rfc4346-bis (The Transport

To: paul.hoffman at vpnc.org (Paul Hoffman)
Subject: Re: [TLS] Last Call: draft-ietf-tls-rfc4346-bis (The Transport
From: Martin Rex <Martin.Rex at sap.com>
Date: Wed, 5 Mar 2008 19:47:56 +0100 (MET)
Cc: RDugal at certicom.com, tls at ietf.org
Delivered-to: ietfarch-tls-web-archive at core3.amsl.com
Delivered-to: tls at core3.amsl.com
In-reply-to: <p0624082ec3f48f00b075 at [10.20.30.162]> from "Paul Hoffman" at Mar 5, 8 09:56:57 am
List-help: <mailto:tls-request@ietf.org?subject=help>
List-id: "This is the mailing list for the Transport Layer Security working group of the IETF." <tls.ietf.org>
List-post: <mailto:tls@ietf.org>
List-subscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www.ietf.org/mailman/listinfo/tls>, <mailto:tls-request@ietf.org?subject=unsubscribe>
Reply-to: martin.rex at sap.com
Sender: tls-bounces at ietf.org

I want to apologize for my rude and inappropriate language in my
last message.

Paul Hoffman wrote:
> 
> At 3:09 PM +0100 3/5/08, Martin Rex wrote:
> >
> >Maybe it is a good idea to use this as market pressure to
> >keep CAs from doing stupid things, such as issuing X.509
> >certificates with SHA-224 instead of SHA-256 in the signature.
> 
> I'm with Martin on this one. The reason SHA-224 was invented was to 
> have "impedance balance" with TripleDES. Even if you agree with that 
> reasoning, there is no reason to use it in certificates. We don't 
> need to help them here.

I'm perfectly fine with hash agility, and I think there is value
in truncating keyed hashes/MACs, but for a digital signature on
an X.509 certificate, using SHA-224 instead of SHA-256 looks like
additional complexity without value.

And even then, truncating a regular hash in a generic fashion,
like Eric suggested, seems IHMO to be more appropriate than
to define/add a new hash algorithm on every occasion.

-Martin

_______________________________________________
TLS mailing list
TLS at ietf.org
https://www.ietf.org/mailman/listinfo/tls

References:
- Re: [TLS] Last Call: draft-ietf-tls-rfc4346-bis (The Transport
  - From: Paul Hoffman

Prev by Date: Re: [TLS] Last Call: draft-ietf-tls-rfc4346-bis (The Transport
Next by Date: Re: [TLS] Last Call: draft-ietf-tls-rfc4346-bis (The Transport
Previous by thread: Re: [TLS] Last Call: draft-ietf-tls-rfc4346-bis (The Transport
Next by thread: Re: [TLS] Last Call: draft-ietf-tls-rfc4346-bis (The Transport
Index(es):
- Date
- Thread

Re: [TLS] Last Call: draft-ietf-tls-rfc4346-bis (The Transport

Note: Messages sent to this list are the opinions of the senders and do not imply endorsement by the IETF.