RE: [Hash] BOF Goals

Robert Zuccherato <robert.zuccherato@entrust.com> Thu, 21 July 2005 14:05 UTC

Received: from localhost.localdomain ([127.0.0.1] helo=megatron.ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1DvbgA-0000sy-EO; Thu, 21 Jul 2005 10:05:38 -0400
Received: from odin.ietf.org ([132.151.1.176] helo=ietf.org) by megatron.ietf.org with esmtp (Exim 4.32) id 1Dvbg9-0000qn-5w for hash@megatron.ietf.org; Thu, 21 Jul 2005 10:05:37 -0400
Received: from ietf-mx.ietf.org (ietf-mx [132.151.6.1]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id KAA02385 for <hash@ietf.org>; Thu, 21 Jul 2005 10:05:35 -0400 (EDT)
Received: from sottmxsecs3.entrust.com ([216.191.252.14]) by ietf-mx.ietf.org with smtp (Exim 4.43) id 1DvcAB-0001vT-Ed for hash@ietf.org; Thu, 21 Jul 2005 10:36:40 -0400
Received: (qmail 32241 invoked from network); 21 Jul 2005 14:05:11 -0000
Received: from robert.zuccherato@entrust.com by sottmxsecs3.entrust.com with EntrustECS-Server-7.3.1; 21 Jul 2005 14:05:11 -0000
Received: from unknown (HELO sottmxs00.entrust.com) (10.4.61.22) by sottmxsecs3.entrust.com with SMTP; 21 Jul 2005 14:05:11 -0000
Received: by sottmxs00.entrust.com with Internet Mail Service (5.5.2657.72) id <PHK73LAQ>; Thu, 21 Jul 2005 10:05:12 -0400
Message-ID: <7A3E1242FA9989439AD1F9B2D71C287F04274224@sottmxs05.entrust.com>
From: Robert Zuccherato <robert.zuccherato@entrust.com>
To: "'Jon Callas'" <jon@pgp.com>, Paul Hoffman <paul.hoffman@vpnc.org>
Subject: RE: [Hash] BOF Goals
Date: Thu, 21 Jul 2005 10:05:12 -0400
MIME-Version: 1.0
X-Mailer: Internet Mail Service (5.5.2657.72)
X-Spam-Score: 0.0 (/)
X-Scan-Signature: e8a67952aa972b528dd04570d58ad8fe
Cc: hash@ietf.org
X-BeenThere: hash@lists.ietf.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: hash.lists.ietf.org
List-Unsubscribe: <https://www1.ietf.org/mailman/listinfo/hash>, <mailto:hash-request@lists.ietf.org?subject=unsubscribe>
List-Archive: <http://www1.ietf.org/pipermail/hash>
List-Post: <mailto:hash@lists.ietf.org>
List-Help: <mailto:hash-request@lists.ietf.org?subject=help>
List-Subscribe: <https://www1.ietf.org/mailman/listinfo/hash>, <mailto:hash-request@lists.ietf.org?subject=subscribe>
Content-Type: multipart/mixed; boundary="===============1695286684=="
Sender: hash-bounces@lists.ietf.org
Errors-To: hash-bounces@lists.ietf.org

I would have to agree with Jon's comments.  The two approaches suggested in
the charter (hash truncation and randomized hashes) may very well end up
being the final solutions that we decide on.  However, there are still too
many open questions regarding the security, efficiency and suitability of
these constructions.  Given that many (most?) applications can simply switch
to using RSA with SHA-256 and that we have to wait for NIST on DSA anyway, I
don't think that there is any need to rush into anything.  Clearly there is
important work to be done.  As Jon said though, that work should probably be
done in the IRTF rather than the IETF.

In any case, it would probably be prudent to wait until after the
Cryptographic Hash Workshop at NIST (October 31st-November 1st) before
deciding upon any charter.  It is not unreasonable to expect the results of
that workshop to be relevant to what gets discussed here.

	Robert Zuccherato.

_______________________________________________
Hash mailing list
Hash@lists.ietf.org
https://www1.ietf.org/mailman/listinfo/hash