On 18/07/16 18:36, [email protected] wrote: > Looking at the recent SHA-1 muck up, I am not confident that the > current approach works. It fails for the same reason that random > Elliptic Curve parameters fails, there is no mechanism that allows a > process for generating random numbers to be audited. > > So lets go to the solution we chose for EC - rigid construction. This > can be made to be auditable.
This seems like a good idea; objections? Gerv _______________________________________________ Public mailing list [email protected] https://cabforum.org/mailman/listinfo/public
