[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: S/MIME v3.2 IDs key size text

To: ietf-smime@xxxxxxx, turners@xxxxxxxx
Subject: RE: S/MIME v3.2 IDs key size text
From: pgut001@xxxxxxxxxxxxxxxxx (Peter Gutmann)
Date: Sat, 03 May 2008 06:16:23 +1200
In-reply-to: <>
List-archive: <http://www.imc.org/ietf-smime/mail-archive/>
List-id: <ietf-smime.imc.org>
List-unsubscribe: <mailto:ietf-smime-request@imc.org?body=unsubscribe>
Sender: owner-ietf-smime@xxxxxxxxxxxx

"Turner, Sean P." <turners@xxxxxxxx> writes:

>A receiving agent needs to be able to verify signatures whose key length is
>chosen by the signer. For interoperability, a receiving agent MUST be able to
>verify signatures whose key length is 1024 bits or shorter.

[...]

>Receiving agents are only required to validate signatures that are the same
>length as sending agents are required to produce, namely 1024 bits.

Aren't these mutually exclusive?

(The "or shorter" attached to the "1024" is also going to prove problematic
with FIPS-evaluated crypto implementations, since you can't do < 1024 bits for
those).

Peter.

Follow-Ups:
- RE: S/MIME v3.2 IDs key size text
  - From: Paul Hoffman

References:
- RE: S/MIME v3.2 IDs key size text
  - From: Turner, Sean P.

Prev by Date: I-D ACTION:draft-ietf-smime-rfc3278-update-03.txt
Next by Date: RE: S/MIME v3.2 IDs key size text
Previous by thread: RE: S/MIME v3.2 IDs key size text
Next by thread: RE: S/MIME v3.2 IDs key size text
Index(es):
- Date
- Thread