On Mon, Jun 22, 2026 at 02:15:21PM -0500, Behcet Sarikaya wrote: > I read all of the above. > Given so much concern on SHA-1 (remember the security review also was > concerned on this) > I suggest that you include some text from above, especially the first > paragraph in the most appropriate place in the draft.
It almost seems as if when people read the phrase "SHA-1", they make assumptions, jump to conclusions, and overlook the fact that the CCR format derives its robustness from SHA-256, or that SHA-1 just an aspect of the RPKI certificate profile. These points are mentioned in the CCR draft, so I'm somewhat skeptical that adding more text will help... Kind regards, Job _______________________________________________ Gen-art mailing list -- [email protected] To unsubscribe send an email to [email protected]
