On Thu, Jun 21, 2018 at 6:07 PM, Andrew Ayer <[email protected]> wrote:
> On Thu, 21 Jun 2018 17:46:18 -0700 > Eric Rescorla <[email protected]> wrote: > > > I am not arguing for removal, but I don't think it's appropriate to > > have a recommendation which precludes the use of the mode of RSA that > > we are otherwise telling people to use. > > Thanks for clarifying what your concern is. > > The recommendation doesn't preclude the use of RSA-PSS, or any other > nondeterministic signature scheme. As reflected in the text, logs > can satisfy the recommendation by signing a particular STH/SCT only > once and storing the signature, instead of signing on demand. > This doesn't sound very convenient, and given the rather unbaked nature of gossip, it seems like the wrong tradeoff. That said, it's a WG decision, so I trust the chairs to determine consensus. -Ekr
_______________________________________________ Trans mailing list [email protected] https://www.ietf.org/mailman/listinfo/trans
