-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 6/2/09 2:34 PM, Simon Josefsson wrote: > Peter Saint-Andre <[email protected]> writes: > >> On 6/2/09 1:56 PM, Dave Cridland wrote: >>> On Tue Jun 2 18:56:35 2009, Jonathan Schleifer wrote: >>>> What if DSA gets completely broken someday? Then we're screwed. And if >>>> we want to be algorithm-independant, we need to implement something >>>> very similar to OpenPGP anyway. >>> Or TLS. >>> >>> Which, incidentally, can use PGP keys. >> AFAIK only GnuTLS has (experimental) support for RFC 5081 (which is >> itself experimental): >> >> http://tools.ietf.org/html/rfc5081 > > The OpenPGP implementation in GnuTLS is not experimental. I believe the > RFC is experimental for IETF political reasons, there is no organized > experiment conducted as far as I know.
Thanks for the clarification. Personally I'd love to have key-login to XMPP servers (and HTTP servers!) so that we could move beyond passwords for authentication. Perhaps we need to lean on the OpenSSL folks about this, too? Peter - -- Peter Saint-Andre https://stpeter.im/ -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.8 (Darwin) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEARECAAYFAkoljtQACgkQNL8k5A2w/vzkfQCdEN5OTUObWs/RQXZheqk6u2cT 8t8AoMl0NL4XZzF48b9rn+htWgaqkdqJ =J8pV -----END PGP SIGNATURE-----
