Re: Nits in current drafts

To: bjh21%bjh21.me.uk@localhost, nisse%lysator.liu.se@localhost
Subject: Re: Nits in current drafts
From: pgut001%cs.auckland.ac.nz@localhost (Peter Gutmann)
Date: Wed, 23 Feb 2005 00:44:12 +1300

nisse%lysator.liu.se@localhost (=?iso-8859-1?q?Niels_M=F6ller?=)
>Ben Harris <bjh21%bjh21.me.uk@localhost> writes:
>> It makes the use of libraries (or perhaps hardware) that encapsulate
>> complete signature schemes unnecessarily difficult, and perhaps
>> impossible
>
>It's "difficult" rather than "impossible". 

Just for the record, I've done SSH using both crypto coprocessors and smart
cards (I'm sure Fortezza cards were never intended to be used with SSH servers
:-), and doing anything *other* than the current "ssh-rsa" would be quite
difficult.  Everything does basic PKCS #1 v1.5 sigs, a few things do PKCS #1
OAEP, and that's about it.  So the hardware argument is strongly in favour of
"ssh-rsa", not against it.

Peter.

References:
- Re: Nits in current drafts
  - From: Niels Möller

Prev by Date: Re: Nits in current drafts
Next by Date: Re: Nits in current drafts
Previous by Thread: Re: Nits in current drafts
Next by Thread: Re: Nits in current drafts
Indexes:

Home | Main Index | Thread Index | Old Index