[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: S/MIME v3.2 IDs key size text

To: ietf-smime@xxxxxxx, phoffman@xxxxxxx, turners@xxxxxxxx
Subject: RE: S/MIME v3.2 IDs key size text
From: pgut001@xxxxxxxxxxxxxxxxx (Peter Gutmann)
Date: Sat, 10 May 2008 19:45:00 +1200
In-reply-to: <>
List-archive: <http://www.imc.org/ietf-smime/mail-archive/>
List-id: <ietf-smime.imc.org>
List-unsubscribe: <mailto:ietf-smime-request@imc.org?body=unsubscribe>
Sender: owner-ietf-smime@xxxxxxxxxxxx

Paul Hoffman <phoffman@xxxxxxx> writes:
>At 12:37 PM -0400 5/6/08, Turner, Sean P. wrote:
>>    0 < key size < 511  : MUST NOT
>>  512 < key size < 1023 : SHOULD-
>>1024 < key size < 2048 : MUST
>>2049 < key size < 4096 : MAY
>
>Beyond what Russ just pointed out, I find the first line to be in bad taste.
>Any IETF spec that says "you must not be able to verify a signature even
>though it is valid" is pretty offensive.

So an implementation is supposed to do what, tell the user that they can be
absolutely totally assured that the signature is valid, all 12 bits of it?  I
guess it'll save implementation time because you can just report "signature
might be valid" without even having to verify it.

Peter.

Follow-Ups:
- RE: S/MIME v3.2 IDs key size text
  - From: Paul Hoffman

References:
- RE: S/MIME v3.2 IDs key size text
  - From: Paul Hoffman

Prev by Date: Re: S/MIME v3.2 IDs key size text
Next by Date: RE: S/MIME v3.2 IDs key size text
Previous by thread: Re: S/MIME v3.2 IDs key size text
Next by thread: RE: S/MIME v3.2 IDs key size text
Index(es):
- Date
- Thread