Re: [Gen-art] Updated draft-os-ietf-sshfp-ecdsa-sha2-06.txt

Thank you! Lionel -Message d'origine- De : Ondřej Surý [mailto:ondrej.s...@nic.cz] Envoyé : vendredi 27 janvier 2012 14:47 À : Francis Dupont; MORAND Lionel RD-CORE-ISS; Peter Koch; Daniel Black Cc : Elwyn Davies; Stephen Farrell; dns-...@ietf.org; ops-...@ietf.org; gen-art@ietf.org Ob

[Gen-art] Updated draft-os-ietf-sshfp-ecdsa-sha2-06.txt

Hi, since I have received many comments about this block: >> ECDSA public key fingerprints MUST use the SHA-256 algorithm >> for the fingerprint as using the SHA-1 algorithm would >> weaken the security of the key, which itself can use only >> SHA-2 family o

Re: [Gen-art] review of draft-os-ietf-sshfp-ecdsa-sha2-04.txt

On 15. 12. 2011, at 17:39, Francis Dupont wrote: > I am the assigned Gen-ART reviewer for this draft. For background on > Gen-ART, please see the FAQ at > . > > Please resolve these comments along with any other Last Call comments > you

Re: [Gen-art] review of draft-os-ietf-sshfp-ecdsa-sha2-04.txt

In your previous mail you wrote: > > Minor issues: not a real issue but I am not convinced there is a real > > crypto reason to give up SHA-1. At the first view the attack against > > SSHFP is a pre-image one, but: > > - I leave the question to cryptographers of the security directorate > >