On Tue, Oct 15, 2013 at 10:59 AM, Pieter Hintjens <[email protected]> wrote:
> While I'm not defending MD5 at all, can a forgery m' have the same size as > m? > Yes. As far as I can see, the signature has to be short enough to verify by > hand. SHA256 would produce 32 bytes; just the same as verifying the > CURVE key by hand. > I didn't realize you were just calculating a key fingerprint. I don't see the point of doing that for Curve25519 keys, given their short length. -- Tony Arcieri
_______________________________________________ zeromq-dev mailing list [email protected] http://lists.zeromq.org/mailman/listinfo/zeromq-dev
