Re: ASN.1 OID for TIGER/192
Jon Callas <jon@callas.org> Mon, 07 October 2002 09:28 UTC
Received: from above.proper.com (mail.proper.com [208.184.76.45]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id FAA11329 for <openpgp-archive@lists.ietf.org>; Mon, 7 Oct 2002 05:28:51 -0400 (EDT)
Received: (from majordomo@localhost) by above.proper.com (8.11.6/8.11.3) id g979HeV14883 for ietf-openpgp-bks; Mon, 7 Oct 2002 02:17:40 -0700 (PDT)
Received: from merrymeet.com (merrymeet.com [63.73.97.162]) by above.proper.com (8.11.6/8.11.3) with ESMTP id g979Hdv14879 for <ietf-openpgp@imc.org>; Mon, 7 Oct 2002 02:17:39 -0700 (PDT)
Received: from [213.11.213.8] (63.73.97.165) by merrymeet.com with ESMTP (Eudora Internet Mail Server 3.1.2) for <ietf-openpgp@imc.org>; Sun, 6 Oct 2002 14:43:00 -0700
User-Agent: Microsoft-Entourage/10.1.0.2006
Date: Sun, 06 Oct 2002 14:43:02 -0700
Subject: Re: ASN.1 OID for TIGER/192
From: Jon Callas <jon@callas.org>
To: OpenPGP <ietf-openpgp@imc.org>
Message-ID: <B9C5FC76.A0AE%jon@callas.org>
In-Reply-To: <3D9A1198.ADA4DCC9@zetnet.co.uk>
Mime-version: 1.0
Content-type: text/plain; charset="US-ASCII"
Content-transfer-encoding: 7bit
Sender: owner-ietf-openpgp@mail.imc.org
Precedence: bulk
List-Archive: <http://www.imc.org/ietf-openpgp/mail-archive/>
List-Unsubscribe: <mailto:ietf-openpgp-request@imc.org?body=unsubscribe>
List-ID: <ietf-openpgp.imc.org>
Content-Transfer-Encoding: 7bit
I confess I am wondering why this is needed. Five years ago, we flirted with
Tiger and Haval because you need wider hashes for better signatures. 192
bits is a bit dodgy because it only gets you an effective strength of 96
bits (over 80 bits for SHA-1). Today, we have all the wide SHAs in the
suite, which balance with symmetric ciphers up to 256 bits of key size.
Adding in TIGER/192 now seems like too little, too late. In 1998, this would
have been great. In 2002 (pushing 2003), it's at best a yawn.
In short, here's a pragmatic question I have: if I were making a signature
today, and I thought that SHA-1 weren't big enough, why would I want to use
TIGER/192 over SHA-{256|384|512}?
Without a good answer to that question, I don't see why it should be there.
I'm even slightly sympathetic to people who think it and HAVAL should be
removed. They've both been overtaken by events.
Jon
- ASN.1 OID for TIGER/192 David Shaw
- Re: ASN.1 OID for TIGER/192 Brian M. Carlson
- Re: ASN.1 OID for TIGER/192 disastry
- Re: ASN.1 OID for TIGER/192 Werner Koch
- Re: ASN.1 OID for TIGER/192 David Shaw
- Re: ASN.1 OID for TIGER/192 Derek Atkins
- Re: ASN.1 OID for TIGER/192 David Shaw
- Re: ASN.1 OID for TIGER/192 David Hopwood
- Re: ASN.1 OID for TIGER/192 Jon Callas
- Re: ASN.1 OID for TIGER/192 disastry