On 09.07.2012, at 18:53, Henderson, Thomas R wrote: > René, a few replies are inline below: > >> From: René Hummen [mailto:[email protected]] >> Sent: Friday, June 29, 2012 2:02 AM >> To: HIP WG >> Cc: Henderson, Thomas R >> Subject: Re: [Hipsec] rfc5201-bis issue 29: Use different RSA mode >> OAEP/PSS
>> 2) Resource-constrained devices may only support ECC crypto. Would it >> make sense to move away from RSA as REQUIRED (seeing that ECC for PC- >> grade platforms is widely available) or is this perceived as too >> drastical of a measure? >> >> [1] http://code.google.com/p/relic-toolkit/ > > I don't have a strong opinion on this, but it was the suggestion offered by > Uri Blumenthal on the cfrg list to move away from RSA, although he also > alluded to the large RSA installed base; hence the suggestion to make both > RSA and ECDSA required to facilitate the migration: > > http://www.ietf.org/mail-archive/web/cfrg/current/msg03151.html He makes a very good point when mentioning RSA-based certificates. To me, that sounds like a good reason to require RSA. BR René -- Dipl.-Inform. Rene Hummen, Ph.D. Student Chair of Communication and Distributed Systems RWTH Aachen University, Germany tel: +49 241 80 21429 web: http://www.comsys.rwth-aachen.de/team/rene-hummen/
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________ Hipsec mailing list [email protected] https://www.ietf.org/mailman/listinfo/hipsec
