Re: [psg.com #460] IESG - Transport - Oakley

To: Nicolas Williams <Nicolas.Williams%sun.com@localhost>
Subject: Re: [psg.com #460] IESG - Transport - Oakley
From: Damien Miller <djm%mindrot.org@localhost>
Date: Tue, 15 Jun 2004 07:57:14 +1000

Nicolas Williams wrote:
>>I don't know, but it certainly would be desirable to stick with sha1.  For 
>>one thing, it means the new method can be specified in one sentence, and as 
>>you note, implemented very nearly as easily.
> 
> DH-GEX uses SHA-1, so if SHA-1 is not appropriate for DH group 14 then
> it doesn't seem appropriate for DH-GEX either...

If the issue is that sha1 only returns 160 bits, insufficient to fully
populate the keys for aes192-cbc and aes256-cbc then I don't believe
that this is a practical prolem (maybe in ~70 years) and certainly not
one to delay publication over.

-d

Follow-Ups:
- Re: [psg.com #460] IESG - Transport - Oakley
  - From: Nicolas Williams

References:
- Re: [psg.com #460] IESG - Transport - Oakley
  - From: Bill Sommerfeld
- Re: [psg.com #460] IESG - Transport - Oakley
  - From: Markus Friedl
- Re: [psg.com #460] IESG - Transport - Oakley
  - From: Chris Lonvick
- Re: [psg.com #460] IESG - Transport - Oakley
  - From: Nicolas Williams
- Re: [psg.com #460] IESG - Transport - Oakley
  - From: der Mouse
- Re: [psg.com #460] IESG - Transport - Oakley
  - From: Niels Möller
- Re: [psg.com #460] IESG - Transport - Oakley
  - From: Damien Miller
- Re: [psg.com #460] IESG - Transport - Oakley
  - From: Jeffrey Hutzelman
- Re: [psg.com #460] IESG - Transport - Oakley
  - From: Nicolas Williams

Prev by Date: Re: [psg.com #460] IESG - Transport - Oakley
Next by Date: Re: [psg.com #460] IESG - Transport - Oakley
Previous by Thread: Re: [psg.com #460] IESG - Transport - Oakley
Next by Thread: Re: [psg.com #460] IESG - Transport - Oakley
Indexes:

Home | Main Index | Thread Index | Old Index