Re: Proposal and intent to implement "dsa-sha2-256" SSH key algorithm

To: denis bider <ietf-ssh3%denisbider.com@localhost>
Subject: Re: Proposal and intent to implement "dsa-sha2-256" SSH key algorithm
From: "Mark D. Baushke" <mdb%juniper.net@localhost>
Date: Thu, 29 Oct 2015 23:53:22 -0700

Hi denis,

Should this Draft RFC also be the one that moves the "ssh-dss" public
key algorithm from a "REQUIRED" and "MUST" implement algorithm to
an "OPTIONAL" and "SHOULD NOT" implement algorithm?

As things stand right now with RFC4253, the only REQUIRED algorithm is
"ssh-dss" and I do not believe that it is a good idea to leave it in
that state.

Or, is this better left to another RFC? Perhaps moving the Ed25519
algorithm created by

  https://tools.ietf.org/html/draft-irtf-cfrg-eddsa-00 

into a MUST algorithm while deprecating "ssh-dss" for SSH?

	Curious,
	-- Mark

Follow-Ups:
- SSH key algorithm updates
  - From: Jeffrey Hutzelman
- Re: Proposal and intent to implement "dsa-sha2-256" SSH key algorithm
  - From: Jeffrey Hutzelman

References:
- Re: Proposal and intent to implement "dsa-sha2-256" SSH key algorithm
  - From: denis bider

Prev by Date: Re: Proposal and intent to implement "dsa-sha2-256" SSH key algorithm
Next by Date: Re: Proposal and intent to implement "dsa-sha2-256" SSH key algorithm
Previous by Thread: Re: Proposal and intent to implement "dsa-sha2-256" SSH key algorithm
Next by Thread: Re: Proposal and intent to implement "dsa-sha2-256" SSH key algorithm
Indexes:

Home | Main Index | Thread Index | Old Index