IETF Logo Mail Archive

Re: Suggested changes for DSA2

David Shaw <dshaw@jabberwocky.com> Mon, 27 March 2006 15:28 UTC

Received: from [10.91.34.44] (helo=ietf-mx.ietf.org) by megatron.ietf.org with esmtp (Exim 4.43) id 1FNtdu-0000Ne-CE for openpgp-archive@lists.ietf.org; Mon, 27 Mar 2006 10:28:30 -0500
Received: from balder-227.proper.com ([192.245.12.227]) by ietf-mx.ietf.org with esmtp (Exim 4.43) id 1FNtdt-0003Du-0i for openpgp-archive@lists.ietf.org; Mon, 27 Mar 2006 10:28:30 -0500
Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.13.5/8.13.5) with ESMTP id k2RF1T1F090912; Mon, 27 Mar 2006 08:01:29 -0700 (MST) (envelope-from owner-ietf-openpgp@mail.imc.org)
Received: (from majordom@localhost) by balder-227.proper.com (8.13.5/8.13.5/Submit) id k2RF1TuU090911; Mon, 27 Mar 2006 08:01:29 -0700 (MST) (envelope-from owner-ietf-openpgp@mail.imc.org)
X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-openpgp@mail.imc.org using -f
Received: from foobar.cs.jhu.edu (foobar.cs.jhu.edu [128.220.13.173]) by balder-227.proper.com (8.13.5/8.13.5) with ESMTP id k2RF1SLm090905 for <ietf-openpgp@imc.org>; Mon, 27 Mar 2006 08:01:28 -0700 (MST) (envelope-from dshaw@jabberwocky.com)
Received: from walrus.hsd1.ma.comcast.net (walrus.hsd1.ma.comcast.net [24.60.132.70]) by foobar.cs.jhu.edu (8.11.6/8.11.6) with ESMTP id k2RF1Qk17454; Mon, 27 Mar 2006 10:01:26 -0500
Received: from grover.jabberwocky.com ([172.24.84.28]) by walrus.hsd1.ma.comcast.net (8.13.6/8.13.5) with ESMTP id k2RF1Rcw013654; Mon, 27 Mar 2006 10:01:27 -0500
Received: from grover.jabberwocky.com (grover.jabberwocky.com [127.0.0.1]) by grover.jabberwocky.com (8.13.1/8.13.1) with ESMTP id k2RF1KPw025477; Mon, 27 Mar 2006 10:01:20 -0500
Received: (from dshaw@localhost) by grover.jabberwocky.com (8.13.1/8.13.1/Submit) id k2RF1KYG025476; Mon, 27 Mar 2006 10:01:20 -0500
Date: Mon, 27 Mar 2006 10:01:20 -0500
From: David Shaw <dshaw@jabberwocky.com>
To: Ian G <iang@systemics.com>
Cc: Hal Finney <hal@finney.org>, ietf-openpgp@imc.org
Subject: Re: Suggested changes for DSA2
Message-ID: <20060327150120.GA25414@jabberwocky.com>
Mail-Followup-To: Ian G <iang@systemics.com>, Hal Finney <hal@finney.org>, ietf-openpgp@imc.org
References: <20060326180218.12C8057FAE@finney.org> <20060326215531.GF30637@jabberwocky.com> <4427E67A.8050202@systemics.com>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <4427E67A.8050202@systemics.com>
OpenPGP: id=99242560; url=http://www.jabberwocky.com/david/keys.asc
User-Agent: Mutt/1.5.11
Sender: owner-ietf-openpgp@mail.imc.org
Precedence: bulk
List-Archive: <http://www.imc.org/ietf-openpgp/mail-archive/>
List-Unsubscribe: <mailto:ietf-openpgp-request@imc.org?body=unsubscribe>
List-ID: <ietf-openpgp.imc.org>
X-Spam-Score: 0.0 (/)
X-Scan-Signature: 856eb5f76e7a34990d1d457d8e8e5b7f

On Mon, Mar 27, 2006 at 03:19:54PM +0200, Ian G wrote:

> I would vote for just allowing a subset of the NIST sizes.
> That is, something like an implementation MUST accept the
> NIST set, and SHOULD reject all others.  If a need for a
> variant comes up, the developers have to battle it out and
> justify going up against the SHOULD.  If there is a clear
> need, then they'll work it out.

It is not the place of a data format standard to hold people's hands
to that extent.  We (correctly) don't tell people to reject signatures
from a 512-bit RSA key.  That's not our job in the standard.  If an
*implementation* wants to do that, that's just fine, but it does not
need permission from the standard to do it.

David

v2.23.0 | Report a Bug | By Email