Re: New version of rsa-sha2-512 draft posted: no more DSA

To: Peter Gutmann <pgut001%cs.auckland.ac.nz@localhost>
Subject: Re: New version of rsa-sha2-512 draft posted: no more DSA
From: nisse%lysator.liu.se@localhost (Niels Möller)
Date: Sun, 08 Nov 2015 19:18:58 +0100

Peter Gutmann <pgut001%cs.auckland.ac.nz@localhost> writes:

> (I can't see any good reason to have -512, it has little support, it's a pain
> to do on 32-bit CPUs, it's slow, and it offers little to no practical security
> advantage over -256).

My experience is that sha512 actually seems to be a bit faster than
sha256 on 64-bit hardware.

That said, I do agree rsa-sha256 might be a better choice for a new
required or strongly recommended signature algorithm.

Regards,
/Niels

-- 
Niels Möller. PGP-encrypted email is preferred. Keyid C0B98E26.
Internet email is subject to wholesale government surveillance.

References:
- New version of rsa-sha2-512 draft posted: no more DSA
  - From: denis bider
- RE: New version of rsa-sha2-512 draft posted: no more DSA
  - From: Peter Gutmann

Prev by Date: Re: DH group exchange (Re: SSH key algorithm updates)
Next by Date: Re: New version of rsa-sha2-512 draft posted: no more DSA
Previous by Thread: RE: New version of rsa-sha2-512 draft posted: no more DSA
Next by Thread: RE: New version of rsa-sha2-512 draft posted: no more DSA
Indexes:

Home | Main Index | Thread Index | Old Index