system-wide crypto policies

2013-06-27 Thread Daniel Pocock
There have been various discussions about GnuPG's default use of SHA1, e.g. http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=612657 which impacts the archive pseudo-package but is also relevant for the gnupg* packages However, are such issues at the discretion of package maintainers and upstre

Re: system-wide crypto policies

2013-06-27 Thread Florian Weimer
* Daniel Pocock: > However, are such issues at the discretion of package maintainers and > upstream, or is it useful to have a uniform Debian approach to > cryptographic strength? Keep in mind that RFC 4880 (OpenPGP) hard-codes SHA-1 in several places, notably for key fingerprints. If there's a

Re: system-wide crypto policies

2013-06-27 Thread Daniel Pocock
On 27/06/13 21:44, Florian Weimer wrote: > * Daniel Pocock: > >> However, are such issues at the discretion of package maintainers and >> upstream, or is it useful to have a uniform Debian approach to >> cryptographic strength? > > Keep in mind that RFC 4880 (OpenPGP) hard-codes SHA-1 in severa

Re: system-wide crypto policies

2013-06-28 Thread Thijs Kinkhorst
On Thu, June 27, 2013 22:16, Daniel Pocock wrote: > On 27/06/13 21:44, Florian Weimer wrote: >> * Daniel Pocock: >> >>> However, are such issues at the discretion of package maintainers and >>> upstream, or is it useful to have a uniform Debian approach to >>> cryptographic strength? >> >> Keep in

Re: system-wide crypto policies

2013-06-28 Thread Ondřej Surý
On Thu, Jun 27, 2013 at 10:16 PM, Daniel Pocock wrote: > 2. http://www.dsd.gov.au/publications/csocprotect/sha-1_deprecated.htm > When you read gov or NIST recommendation you need to take into account the fact that they need to keep the current signatures to be still cryptographically strong in 1

Re: system-wide crypto policies

2013-06-28 Thread Daniel Pocock
On 28/06/13 09:34, Thijs Kinkhorst wrote: > On Thu, June 27, 2013 22:16, Daniel Pocock wrote: >> On 27/06/13 21:44, Florian Weimer wrote: >>> * Daniel Pocock: >>> However, are such issues at the discretion of package maintainers and upstream, or is it useful to have a uniform Debian app

Re: system-wide crypto policies

2013-06-30 Thread Florian Weimer
* Daniel Pocock: > Just out of interest, a CA can re-issue their root cert with the same > key pair but a stronger hash. This type of thing has happened before. That's possible because the self-signature is not actually meaningful. 8-) It's different further down the tree, and some protocols (i