On Fri, Aug 5, 2011 at 7:42 AM, Leif Johansson <[email protected]> wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > >>> Just doing the math yourself, from scratch, is pretty easy if you have the >>> bare key. It's nigh-on trivial if you have a bigint library. Solution: >>> don't use OpenSSL. I propose we don't get bogged down in the certificate >>> problem for the moment. >> >> Cryptographer's warning: do not do this. Hard hat area ahead. >> > > That is advice for implementors and not for spec writers, right?
Correct. Getting the implementation right is tricky. -Ekr _______________________________________________ woes mailing list [email protected] https://www.ietf.org/mailman/listinfo/woes
