Re: [openpgp] Expiration impending: <draft-ietf-openpgp-rfc4880bis-01.txt>

"Robert J. Hansen" <rjh@sixdemonbag.org> Mon, 03 July 2017 04:48 UTC

Return-Path: <rjh@sixdemonbag.org>
X-Original-To: openpgp@ietfa.amsl.com
Delivered-To: openpgp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0422D12EC16 for <openpgp@ietfa.amsl.com>; Sun, 2 Jul 2017 21:48:10 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id wp0vAbJYGnYa for <openpgp@ietfa.amsl.com>; Sun, 2 Jul 2017 21:48:08 -0700 (PDT)
Received: from shards.monkeyblade.net (shards.monkeyblade.net [184.105.139.130]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id CA20D1293D6 for <openpgp@ietf.org>; Sun, 2 Jul 2017 21:48:08 -0700 (PDT)
Received: from quorra.local (babcom.com [216.246.132.90]) (using TLSv1 with cipher DHE-RSA-AES128-SHA (128/128 bits)) (Client did not present a certificate) (Authenticated sender: rjh-sixdemonbag) by shards.monkeyblade.net (Postfix) with ESMTPSA id 610BB12668DB1 for <openpgp@ietf.org>; Sun, 2 Jul 2017 21:48:08 -0700 (PDT)
To: openpgp@ietf.org
References: <149847732613.7086.8580563657011849337.idtracker@ietfa.amsl.com> <CALaySJKxWevOZYv1hOBFV-+3T=2x43vmie50t6ko2A+a-gTS_A@mail.gmail.com> <a3a82aab-a0d9-f044-21c0-26de346bf6b3@sixdemonbag.org> <1499057065761.45702@cs.auckland.ac.nz>
From: "Robert J. Hansen" <rjh@sixdemonbag.org>
Message-ID: <8a82ac55-0b13-70de-87c4-2b689cddac1c@sixdemonbag.org>
Date: Mon, 3 Jul 2017 00:48:07 -0400
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.12; rv:52.0) Gecko/20100101 Thunderbird/52.2.1
MIME-Version: 1.0
In-Reply-To: <1499057065761.45702@cs.auckland.ac.nz>
Content-Type: text/plain; charset=utf-8
Content-Language: en-US
Content-Transfer-Encoding: 7bit
X-Greylist: Sender succeeded SMTP AUTH, not delayed by milter-greylist-4.5.12 (shards.monkeyblade.net [149.20.54.216]); Sun, 02 Jul 2017 21:48:08 -0700 (PDT)
Archived-At: <https://mailarchive.ietf.org/arch/msg/openpgp/hN2Ytrv7C6kZfSy79Sy7VXDg2-Y>
Subject: Re: [openpgp] Expiration impending: <draft-ietf-openpgp-rfc4880bis-01.txt>
X-BeenThere: openpgp@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: "Ongoing discussion of OpenPGP issues." <openpgp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/openpgp>, <mailto:openpgp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/openpgp/>
List-Post: <mailto:openpgp@ietf.org>
List-Help: <mailto:openpgp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/openpgp>, <mailto:openpgp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 03 Jul 2017 04:48:10 -0000

> That's not necessarily a problem, it's perfectly OK PRFs, MACs, and
> similar situations, you just want to move away from it for
> signatures.

Yes, but removing it cuts down on the amount of (wholly inappropriate)
fearmongering that gets thrown around by the ignorant whenever SHA-1 is
mentioned.  OpenPGP adoption is slow enough already; continued use of
SHA-1, even where it's safe, seems contraindicated.