Re: [Hash] Charter discussion, round 1

EKR <ekr@networkresonance.com> Thu, 16 June 2005 02:24 UTC

Received: from localhost.localdomain ([127.0.0.1] helo=megatron.ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1Dik3p-0004md-Lt; Wed, 15 Jun 2005 22:24:53 -0400
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1Dik3o-0004mY-OM for hash@megatron.ietf.org; Wed, 15 Jun 2005 22:24:52 -0400
Received: from ietf-mx.ietf.org (ietf-mx [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id WAA11807 for <hash@ietf.org>; Wed, 15 Jun 2005 22:24:50 -0400 (EDT)
Received: from laser.networkresonance.com ([198.144.196.2]) by ietf-mx.ietf.org with esmtp (Exim 4.33) id 1DikQb-0007WQ-0a for hash@ietf.org; Wed, 15 Jun 2005 22:48:27 -0400
Received: from networkresonance.com (raman.networkresonance.com [198.144.196.3]) by laser.networkresonance.com (Postfix) with ESMTP id 637028A02D; Wed, 15 Jun 2005 19:31:14 -0700 (PDT)
To: Jim Schaad <ietf@augustcellars.com>
Subject: Re: [Hash] Charter discussion, round 1
In-reply-to: Your message of "Tue, 14 Jun 2005 15:43:44 PDT." <20050614224156.A506B830E6@smtp2.pacifier.net>
X-Mailer: MH-E 7.4.3; nmh 1.0.4; XEmacs 21.4 (patch 15)
Date: Wed, 15 Jun 2005 19:24:36 -0700
From: EKR <ekr@networkresonance.com>
Message-Id: <20050616023114.637028A02D@laser.networkresonance.com>
X-Spam-Score: 0.0 (/)
X-Scan-Signature: de4f315c9369b71d7dd5909b42224370
Cc: hash@ietf.org
X-BeenThere: hash@lists.ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: hash.lists.ietf.org
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/hash>, <mailto:hash-request@lists.ietf.org?subject=unsubscribe>
List-Archive: <http://www1.ietf.org/pipermail/hash>
List-Post: <mailto:hash@lists.ietf.org>
List-Help: <mailto:hash-request@lists.ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/hash>, <mailto:hash-request@lists.ietf.org?subject=subscribe>
Sender: hash-bounces@lists.ietf.org
Errors-To: hash-bounces@lists.ietf.org

Jim Schaad <ietf@augustcellars.com> wrote:
> 1. Is this new hash function we are considering in phase 1 going to be the
> same length as SHA-1 or not?  This would appear to be implied by the goals.
> Would replacement of SHA-1 with SHA-256 intact be considered as reasonable
> in the first phase?

Right. It's important here to distinguish between DSA/ECDSA and RSA.

There's basically no advantage to using a truncated SHA-256 over
straight SHA-256 with RSA. The performance is (of course) the same
and there's plenty of room for a 256-bit hash in a 1024-bit RSA block
(and people using 512-bit deserve what they get). 

So, defining truncated hashes really only makes sense for ECDSA/DSA
and other algorithms with fixed input sizes....

-Ekr

_______________________________________________
Hash mailing list
Hash@lists.ietf.org
https://www1.ietf.org/mailman/listinfo/hash