Re: system-wide crypto policies

To: Daniel Pocock <daniel@pocock.com.au>
Cc: debian developers <debian-devel@lists.debian.org>
Subject: Re: system-wide crypto policies
From: Ondřej Surý <ondrej@sury.org>
Date: Fri, 28 Jun 2013 16:14:51 +0200
Message-id: <[🔎] CALjhHG9T-xBua4u33tZYYt_sZnNESZEBjj479DYLkjoN=rSgqw@mail.gmail.com>
In-reply-to: <[🔎] 51CC9DB9.8060101@pocock.com.au>
References: <[🔎] 51CC3709.7000105@pocock.com.au> <[🔎] 87bo6rnxt8.fsf@mid.deneb.enyo.de> <[🔎] 51CC9DB9.8060101@pocock.com.au>

On Thu, Jun 27, 2013 at 10:16 PM, Daniel Pocock <daniel@pocock.com.au> wrote:

2. http://www.dsd.gov.au/publications/csocprotect/sha-1_deprecated.htm

When you read gov or NIST recommendation you need to take into account the fact that they need to keep the current signatures to be still cryptographically strong in 10 years or so. Hence they need to move to anything stronger much sooner than general population (or Debian).

--
Ondřej Surý <ondrej@sury.org>

Reply to:

References:
- system-wide crypto policies
  - From: Daniel Pocock <daniel@pocock.com.au>
- Re: system-wide crypto policies
  - From: Florian Weimer <fw@deneb.enyo.de>
- Re: system-wide crypto policies
  - From: Daniel Pocock <daniel@pocock.com.au>

Prev by Date: Re: Reporting 1.2K crashes
Next by Date: Re: Reporting 1.2K crashes
Previous by thread: Re: system-wide crypto policies
Next by thread: Bug#714271: ITP: opari2 -- OpenMP Pragma And Region Instrumentor - translation tool
Index(es):
- Date
- Thread