IETF Logo Mail Archive

Re: [openpgp] Fingerprints

Vincent Breitmoser <look@my.amazin.horse> Tue, 05 May 2015 21:43 UTC

Return-Path: <look@my.amazin.horse>
X-Original-To: openpgp@ietfa.amsl.com
Delivered-To: openpgp@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 371CD1B29D6 for <openpgp@ietfa.amsl.com>; Tue, 5 May 2015 14:43:10 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id am_cgqHgBK9s for <openpgp@ietfa.amsl.com>; Tue, 5 May 2015 14:43:06 -0700 (PDT)
Received: from mail.mugenguild.com (mugenguild.com [5.135.189.5]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id EF7BC1B29EB for <openpgp@ietf.org>; Tue, 5 May 2015 14:42:53 -0700 (PDT)
Received: from localhost (p5798EDDB.dip0.t-ipconnect.de [87.152.237.219]) by mail.mugenguild.com (Postfix) with ESMTPSA id C604F5FD0E; Tue, 5 May 2015 23:40:11 +0200 (CEST)
References: <CAMm+LwhbB+-MnGRBCvprgAGOuu+5CJ2rgod7EBGOQR5UNVrspQ@mail.gmail.com> <87d232lkb6.fsf@alice.fifthhorseman.net> <sjmlhhmakxp.fsf@securerf.ihtfp.org>
From: Vincent Breitmoser <look@my.amazin.horse>
To: Derek Atkins <derek@ihtfp.com>
Date: Tue, 05 May 2015 23:26:17 +0200
Message-ID: <871tiupupe.fsf@littlepip.fritz.box>
In-reply-to: <sjmlhhmakxp.fsf@securerf.ihtfp.org>
MIME-Version: 1.0
Content-Type: multipart/signed; boundary="=-=-="; micalg="pgp-sha1"; protocol="application/pgp-signature"
Archived-At: <http://mailarchive.ietf.org/arch/msg/openpgp/-3JAzdUWCz9OFXqdN4W_ShEqS40>
Cc: IETF OpenPGP <openpgp@ietf.org>
Subject: Re: [openpgp] Fingerprints
X-BeenThere: openpgp@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "Ongoing discussion of OpenPGP issues." <openpgp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/openpgp>, <mailto:openpgp-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/openpgp/>
List-Post: <mailto:openpgp@ietf.org>
List-Help: <mailto:openpgp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/openpgp>, <mailto:openpgp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 05 May 2015 21:43:10 -0000

On 20 Apr 2015, Derek Atkins wrote:
>>> Short fingerprints are important; if they are getting too long
>>> they won't serve a purpose because the public key could be used
>>> directly.
>>
>> If we use a 256-bit fingerprint for a 255-bit curve25519 key,
>> what's the point?
>>
>> * digest algorithm; we need preimage resistance; we do not need
>> collision resistance.
>
> So you're saying we can stick with SHA1?  ;)

I would like to pick up on this point again: What's wrong with 160 bit
fingerprints?  The bit length seems more than sufficient to cover any
Mooreian doubts, a more relevant issue would be weaknesses in the
hashing algorithm itself, where the status is that in its 20 years not
even a collision has been found for SHA-1.

Seeing talk about fingerprints which "still fit into one line" and
"maybe moving to SHA3-512" while at the same time asserting that manual
verification of fingerprints should still be a thing, I'm a little
concerned about the direction this is going...

 - V

v2.23.0 | Report a Bug | By Email