[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: WGLC for draft-ietf-pkix-sha2-dsa-ecdsa-06.txt

To: Tom Gindin <tgindin@xxxxxxxxxx>, Daniel Brown <dbrown@xxxxxxxxxxxx>
Subject: RE: WGLC for draft-ietf-pkix-sha2-dsa-ecdsa-06.txt
From: Paul Hoffman <paul.hoffman@xxxxxxxx>
Date: Thu, 18 Jun 2009 08:43:04 -0700
Cc: "ietf-pkix@xxxxxxx" <ietf-pkix@xxxxxxx>
In-reply-to: <OF0E56A54D.F3CE0BC5-ON852575D8.006770A7-852575D9.0006C73F@xxxxxxxxxx>
List-archive: <http://www.imc.org/ietf-pkix/mail-archive/>
List-id: <ietf-pkix.imc.org>
List-unsubscribe: <mailto:ietf-pkix-request@imc.org?body=unsubscribe>
References: <OF0E56A54D.F3CE0BC5-ON852575D8.006770A7-852575D9.0006C73F@xxxxxxxxxx>
Sender: owner-ietf-pkix@xxxxxxxxxxxx

At 9:14 PM -0400 6/17/09, Tom Gindin wrote:
>        Would it be simple enough to just say that NIST SP 800-57 part 1
>table 3 implies that its authors consider the use of a given hash
>algorithm of the SHA family in digital signatures with an output length of
>2L bits to have roughly comparable strength (presumably against known
>cryptographic attacks) to the use of a symmetric key of L bits?  We can
>also say that NIST has given its own summaries of appropriate key lengths
>for use after a given date in table 4 of that same document, instead of
>referencing multiple long documents and expecting implementors to read
>them.

That definitely works for me, assuming that you mean "replace the SHOULDs and MUSTs" with the above wording.

--Paul Hoffman, Director
--VPN Consortium

Follow-Ups:
- RE: WGLC for draft-ietf-pkix-sha2-dsa-ecdsa-06.txt
  - From: Tom Gindin

References:
- RE: WGLC for draft-ietf-pkix-sha2-dsa-ecdsa-06.txt
  - From: Tom Gindin

Prev by Date: RE: WGLC for draft-ietf-pkix-sha2-dsa-ecdsa-06.txt
Next by Date: RE: WGLC for draft-ietf-pkix-sha2-dsa-ecdsa-06.txt
Previous by thread: RE: WGLC for draft-ietf-pkix-sha2-dsa-ecdsa-06.txt
Next by thread: RE: WGLC for draft-ietf-pkix-sha2-dsa-ecdsa-06.txt
Index(es):
- Date
- Thread