Folks, The results of this poll were: 7 YES - SHA1 (and mgf1SHA1) should be the default parameters for these algorithms 2 NO - SHA1 (and mgf1SHA1) should not be the default parameters for these algorithms 4 DISCUSS - More discussion is needed
Based upon these results, I do not believe that a reasonable consensus call is possible yet. This issue remains open. Please comment on the mailing list and be prepared to finalize resolution in Atlanta. Thanks to all who participated in this poll. Thanks to all who participated in this poll. Karen O'Donoghue (writing as working group co-chair) -----Original Message----- From: [email protected] [mailto:[email protected]] On Behalf Of Karen O'Donoghue Sent: Wednesday, August 29, 2012 2:30 PM To: [email protected] Subject: [jose] (REDO) POLL: RSA-OAEP/RSA-PSS default parameters Folks, Given the confusion around the original version of this poll, I'd like to try again. The basic question is unchanged, the room count from Vancouver has been corrected, and a clarification regarding the status of SHA1 in the OAEP specification has been added. For those of you who voted and feel you may have misunderstood the question or voted incorrectly, please feel free to update your answer. Question: Should SHA1 (and mgf1SHA1) be the default parameters for these algorithms? Note: These are the default parameters specified in RFC 3447, Section A.2.1, and are widely deployed. Room vote: 5 yes, 0 no, 3 discuss Thanks, Karen _______________________________________________ jose mailing list [email protected] https://www.ietf.org/mailman/listinfo/jose _______________________________________________ jose mailing list [email protected] https://www.ietf.org/mailman/listinfo/jose
