Re: ASN.1 OID for TIGER/192

David Hopwood <david.hopwood@zetnet.co.uk> Tue, 01 October 2002 20:41 UTC

Received: from above.proper.com (mail.proper.com [208.184.76.45]) by ietf.org (8.9.1a/8.9.1a) with ESMTP id QAA04429 for <openpgp-archive@lists.ietf.org>; Tue, 1 Oct 2002 16:41:05 -0400 (EDT)
Received: (from majordomo@localhost) by above.proper.com (8.11.6/8.11.3) id g91KO8h01081 for ietf-openpgp-bks; Tue, 1 Oct 2002 13:24:08 -0700 (PDT)
Received: from mailout.zetnet.co.uk (mail@new-tonge.zetnet.co.uk [194.247.47.231]) by above.proper.com (8.11.6/8.11.3) with ESMTP id g91KO4v01075 for <ietf-openpgp@imc.org>; Tue, 1 Oct 2002 13:24:05 -0700 (PDT)
Received: from irwell.zetnet.co.uk ([194.247.47.48] helo=zetnet.co.uk) by mailout.zetnet.co.uk with esmtp (Exim 3.35 #1 (Debian)) id 17wTYg-0004pC-00 for <ietf-openpgp@imc.org>; Tue, 01 Oct 2002 21:23:54 +0100
Received: from zetnet.co.uk (bts-0076.dialup.zetnet.co.uk [194.247.48.76]) by zetnet.co.uk (8.11.3/8.11.3/Debian 8.11.2-1) with ESMTP id g91KNol04586 for <ietf-openpgp@imc.org>; Tue, 1 Oct 2002 21:23:52 +0100
Message-ID: <3D9A1198.ADA4DCC9@zetnet.co.uk>
Date: Tue, 01 Oct 2002 21:20:24 +0000
From: David Hopwood <david.hopwood@zetnet.co.uk>
X-Mailer: Mozilla 4.7 [en] (WinNT; I)
X-Accept-Language: en-GB,en,fr-FR,fr,de-DE,de,ru
MIME-Version: 1.0
To: ietf-openpgp@imc.org
Subject: Re: ASN.1 OID for TIGER/192
References: <20020927125550.GA14033@akamai.com>
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Sender: owner-ietf-openpgp@mail.imc.org
Precedence: bulk
List-Archive: <http://www.imc.org/ietf-openpgp/mail-archive/>
List-Unsubscribe: <mailto:ietf-openpgp-request@imc.org?body=unsubscribe>
List-ID: <ietf-openpgp.imc.org>
Content-Transfer-Encoding: 7bit

-----BEGIN PGP SIGNED MESSAGE-----

David Shaw wrote:
> In 2440 and in all the 2440bis drafts, the TIGER/192 hash is not fully
> usable as it has no OID.  Werner Koch and I, with the cooperation of
> TIGER's authors, recently arranged an OID for it:
> 
>         1.3.6.1.4.1.11591.12.2

I hope that is only the OID for Tiger-192 with 3 passes (as used by OpenPGP),
not Tiger in general. SHA-256, SHA-384 and SHA-512, for example, have
separate OIDs.

> It would be good to put this in 2440bis so TIGER will be usable.

Note the potential problems with the Tiger specification and test vectors
described here:
<http://www.users.zetnet.co.uk/hopwood/crypto/scan/md.html#Tiger>

> I have a sneaking suspicion that this may raise the question whether
> TIGER should be in the standard at all, as so long as it did not have
> an OID, the question was moot.  I have no strong feelings on this
> point, but if we are not going to allow the use of TIGER, then perhaps
> we should remove it from the standard altogether or explicitly
> disallow its use as the current halfway state is confusing now that
> there is an OID available.

I agree, and the same applies to HAVAL. However, my vote is to remove both
Tiger and HAVAL; there's no reason to believe they have any security or
other advantages over the other supported hashes.

- -- 
David Hopwood <david.hopwood@zetnet.co.uk>;

Home page & PGP public key: http://www.users.zetnet.co.uk/hopwood/
RSA 2048-bit; fingerprint 71 8E A6 23 0E D3 4C E5  0F 69 8C D4 FA 66 15 01
Nothing in this message is intended to be legally binding. If I revoke a
public key but refuse to specify why, it is because the private key has been
seized under the Regulation of Investigatory Powers Act; see www.fipr.org/rip


-----BEGIN PGP SIGNATURE-----
Version: 2.6.3i
Charset: noconv

iQEVAwUBPZlHADkCAxeYt5gVAQH93AgAwwbTGnPilXu3I9dG3lxY31djiGGOHix3
Ij+X0ZtD1M7mCl40CHXad4BqDdCzZKJU7qaqdL1P4iNWoSB+Iy1hgDoTkpSGMQgD
+I/EBsaZ/pZqYP6Xe8VN7jiuvJdy7AhcwSgx8xakKDwziJ+9vMemTwrZpz7D4/BE
0c228tbx/LtzkAqxgwtTfuGWYpnr9/X0AAU6GeWUGKUHWhrNkB9HOAfIxk9MJWp5
8oRpOQbUyx3bsESYLx8uXM354PhipcYJgpsmOJwzik+XeOtVBtqXjB81SyTlUTe5
rolhUnX6U7YWAhEKaOfgvO1Rkz5MoYaddWISrSlviu3Onep40dajkQ==
=iPlM
-----END PGP SIGNATURE-----