[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: RSA vs. DSA MUST

To: Enzo Michelangeli <em@xxxxxxx>
Subject: Re: RSA vs. DSA MUST
From: "Bonatti, Chris" <BonattiC@xxxxxxxx>
Date: Thu, 30 Nov 2000 10:21:32 -0500
Cc: Bob Jueneman <bjueneman@xxxxxxxxxx>, ietf-smime@xxxxxxx
List-archive: <http://www.imc.org/ietf-smime/mail-archive/>
List-id: <ietf-smime.imc.org>
List-unsubscribe: <mailto:ietf-smime-request@imc.org?body=unsubscribe>
Organization: IECA, Inc.
References: <> <>
Sender: owner-ietf-smime@xxxxxxxxxxxx

Enzo Michelangeli wrote:

> Here is my modest proposal for SMIME v.3 sole MUST requirements:
>
> - Full interoperability with SMIME v.2, therefore #include-ing all the MUST
> of RFC2311;
> - Minimum key length raised to 1024-bit for PK and 112-bit for symmetric
> algorithms;
> - At least one other key exchange algorithm and one signature algorithm
> unrelated to the problem of modular factorization, to protect against
> possible unpleasant effects of progress in numbers theory. I'd say that DSA
> and DH are the best candidates, if we want to exorcise the IP curse that
> could strike ECC-based techniques;
> - 3DES-EDE and Rijndael added to RC2.
>
> Cheers --
>
> Enzo

Enzo,

This isn't actually too modest in my view.  In terms of numbers of things
supported it's not too far from where we are now (just a few attributes).  I
would support this with one addition.  I think you *need* to support the
'SMIMECapabilities' on reception.  This just seems like a necessity in any
environment that supports multiple algorithms.  Otherwise, you have all you need
for basic interoperability.

Chris

References:
- Re: RSA vs. DSA MUST
  - From: Bob Jueneman
- Re: RSA vs. DSA MUST
  - From: Enzo Michelangeli

Prev by Date: Re: RSA vs. DSA MUST
Next by Date: REVERSE the AGING PROCESS 10-20 Years!
Previous by thread: Re: RSA vs. DSA MUST
Next by thread: Re: RSA vs. DSA MUST
Index(es):
- Date
- Thread