TSIG Algorithms Current TSIG Proposed Standard [RFC 2845] defines only “HMAC-MD5.SIG-ALG.REG.INT”. Possible weaknesses in MD5 do not apply to HMAC-MD5 so it’s still strong but Some people want to use government approved algorithms. Some people want to truncate their MACs. Various SHA algorithms are believed to be stronger than MD5. |