Hi all, Just to summarize the possible options about encoding hash algorithm:
a) Use the same hash algorithm as in CGA for all hashes. There is no bidding down attack in that case. Different algorithms then CGA algorithm for other hashes does not increase security. b) Use the Hash Algorithm option to define different (or the same?) algorithm for all hashes. It is vulnerable to the bidding down attack, but provides flexibility, since in the future, SeND might be used without CGAs. Any opinions? :-) Ana _______________________________________________ CGA-EXT mailing list [email protected] https://www.ietf.org/mailman/listinfo/cga-ext
