Re: [Monotone-devel] Re: Policy branches

monotone-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Monotone-devel] Re: Policy branches - first steps

From:	Paul Crowley
Subject:	Re: [Monotone-devel] Re: Policy branches - first steps
Date:	Mon, 26 Feb 2007 22:37:34 +0000
User-agent:	Icedove 1.5.0.9 (X11/20061220)

Jack Lloyd wrote:

On Mon, Feb 26, 2007 at 01:17:24PM -0800, Justin Patrin wrote:

3) DSA can only sign less than 256 bits (140?) so moving to SHA-256
and DSA will be problematic.


DSA, algorithmically, can sign arbitrary size hashes, as long as you
choose a large enough q parameter. Until recently the standardized max
for q was 160 bits, FIPS 186-3 (currently in draft) allows longer q if
you use a longer p (q=256 is OK with p=2048 or 3072 bits).

The question is how attached we are to ssh-agent. It's very cool butit's limiting in this regard. If we want to go with it, it's a questionof whether we can persuade it to accept 256-bit q. If we want to partfrom it then there are a number of signature standards we couldcontemplate, including ECDSA which is faster than DSA for the samesecurity and has smaller keys.

--
  __
\/ o\ Paul Crowley, address@hidden
/\__/ http://www.ciphergoth.org/

[Prev in Thread]

Current Thread

[Next in Thread]

Re: [Monotone-devel] Policy branches - first steps, (continued)
- Re: [Monotone-devel] Policy branches - first steps, Paul Crowley, 2007/02/20
  - Re: [Monotone-devel] Policy branches - first steps, Timothy Brownawell, 2007/02/25
    - Re: [Monotone-devel] Policy branches - first steps, Paul Crowley, 2007/02/26
    - [Monotone-devel] Re: Policy branches - first steps, Steven E. Harris, 2007/02/26
    - [Monotone-devel] Crypto and SHA-1, was Policy branches - first steps, Paul Crowley, 2007/02/26
    - [Monotone-devel] Re: Crypto and SHA-1, was Policy branches - first steps, Lapo Luchini, 2007/02/27
    - Re: [Monotone-devel] Re: Crypto and SHA-1, was Policy branches - first steps, Paul Crowley, 2007/02/27
    - Re: [Monotone-devel] Re: Policy branches - first steps, Justin Patrin, 2007/02/26
    - Re: [Monotone-devel] Re: Policy branches - first steps, Jack Lloyd, 2007/02/26
    - Re: [Monotone-devel] Re: Policy branches - first steps, Justin Patrin, 2007/02/26
    - Re: [Monotone-devel] Re: Policy branches - first steps, Paul Crowley <=
    - Re: [Monotone-devel] Re: Policy branches - first steps, Brian May, 2007/02/26
    - Re: [Monotone-devel] Re: Policy branches - first steps, Paul Crowley, 2007/02/27
    - [Monotone-devel] Re: Policy branches - first steps, Lapo Luchini, 2007/02/27
    - Re: [Monotone-devel] Re: Policy branches - first steps, Jack Lloyd, 2007/02/27
    - [Monotone-devel] Re: Flag day, William Uther, 2007/02/26
    - [Monotone-devel] Re: Flag day, Paul Crowley, 2007/02/26
    - [Monotone-devel] Re: Flag day, Timothy Brownawell, 2007/02/26

Prev by Date: [Monotone-devel] Re: Flag day
Next by Date: [Monotone-devel] Re: Flag day
Previous by thread: Re: [Monotone-devel] Re: Policy branches - first steps
Next by thread: Re: [Monotone-devel] Re: Policy branches - first steps
Index(es):
- Date
- Thread