Re: [hiprg] use of sha-1 in the DHT interface draft

Samu Varjonen <samu.varjonen@helsinki.fi> Fri, 21 October 2011 13:34 UTC

Return-Path: <samu.varjonen@helsinki.fi>
X-Original-To: hiprg@ietfa.amsl.com
Delivered-To: hiprg@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 19B7521F8C45 for <hiprg@ietfa.amsl.com>; Fri, 21 Oct 2011 06:34:08 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.599
X-Spam-Level:
X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599]
Received: from mail.ietf.org ([12.22.58.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id B7DkATvvgGS3 for <hiprg@ietfa.amsl.com>; Fri, 21 Oct 2011 06:34:07 -0700 (PDT)
Received: from argo.otaverkko.fi (argo.otaverkko.fi [212.68.0.2]) by ietfa.amsl.com (Postfix) with ESMTP id 6F24421F8B4E for <hiprg@irtf.org>; Fri, 21 Oct 2011 06:34:06 -0700 (PDT)
Received: from [128.214.114.246] (wel-36.pc.hiit.fi [128.214.114.246]) by argo.otaverkko.fi (Postfix) with ESMTP id 1DAF525FCB7 for <hiprg@irtf.org>; Fri, 21 Oct 2011 16:34:04 +0300 (EEST)
Message-ID: <4EA174CB.8000409@helsinki.fi>
Date: Fri, 21 Oct 2011 16:34:03 +0300
From: Samu Varjonen <samu.varjonen@helsinki.fi>
User-Agent: Mozilla/5.0 (X11; U; Linux x86_64; en-US; rv:1.9.2.18) Gecko/20110617 Thunderbird/3.1.11
MIME-Version: 1.0
To: hiprg@irtf.org
References: <FD98F9C3CBABA74E89B5D4B5DE0263B9379F111483@XCH-NW-12V.nw.nos.boeing.com> <7CC566635CFE364D87DC5803D4712A6C4CF18DF866@XCH-NW-10V.nw.nos.boeing.com> <2145AC2B-21D7-4535-98C8-916A3447201A@cs.rwth-aachen.de>
In-Reply-To: <2145AC2B-21D7-4535-98C8-916A3447201A@cs.rwth-aachen.de>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Subject: Re: [hiprg] use of sha-1 in the DHT interface draft
X-BeenThere: hiprg@irtf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: "Host Identity Protocol \(HIP\) Research Group" <hiprg.irtf.org>
List-Unsubscribe: <https://www.irtf.org/mailman/options/hiprg>, <mailto:hiprg-request@irtf.org?subject=unsubscribe>
List-Archive: <http://www.irtf.org/mail-archive/web/hiprg>
List-Post: <mailto:hiprg@irtf.org>
List-Help: <mailto:hiprg-request@irtf.org?subject=help>
List-Subscribe: <https://www.irtf.org/mailman/listinfo/hiprg>, <mailto:hiprg-request@irtf.org?subject=subscribe>
X-List-Received-Date: Fri, 21 Oct 2011 13:34:08 -0000

On 21/10/11 14:59, Tobias Heer wrote:
> Hello,
>
> Am 21.10.2011 um 01:57 schrieb Henderson, Thomas R:
>
>> We've received a comment during Gen-ART review of draft-irtf-hiprg-dht-04 that merits list discussion.  The comment, from Kathleen Moriarty, is below:
>>
> [...]
>> - change both to SHA-256.  Since we are already talking about clients modified to support HIP, and it doesn't impact servers, this would just be one more small change to clients.
>>
> I would prefer this option. It does not seem to break the interface and legacy compatibility does not seem an issue. However, I am not sure about the practical security benefits of truncated SHA-256 compared to SHA-1.
>

+1

> Best regards,
>
> Tobias
>