Hello Tony, [ cutting through ]
Tony Cheneau wrote: > > Hello Julien, > > Thank you for reviewing our document. > > Comments below: > > On Fri, 21 May 2010, Laganier, Julien wrote: > > > [...] > > > - an ND message sent from a CGA based on a public key algorithm that > > is not supported by the receiver, and signed using that same algorithm > > shall be treated as insecure by the receiver as per RFC3971, i.e., it > > shall not be discarded. > > I do not see why I should threat a message as insecure if I can verify > the signature it is protected with. If you can verify the signature you support the algorithm. If you cannot verify the signature you do not support the algorithm. This is orthogonal to your choice of algorithm to generate a CGA. --julien _______________________________________________ CGA-EXT mailing list [email protected] https://www.ietf.org/mailman/listinfo/cga-ext
