[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: I-D ACTION:draft-ietf-dnsext-ds-sha256-02.txt

To: Edward Lewis <Ed.Lewis@neustar.biz>
Subject: Re: I-D ACTION:draft-ietf-dnsext-ds-sha256-02.txt
From: Wes Hardaker <hardaker@tislabs.com>
Date: Tue, 27 Dec 2005 09:46:46 -0800
Cc: David Blacka <davidb@verisignlabs.com>, "Scott Rose" <scottr@nist.gov>, namedroppers@ops.ietf.org
In-reply-to: <a06200700bfd6ee0ce5b0@[192.168.1.100]> (Edward Lewis's message of "Tue, 27 Dec 2005 08:25:11 -0500")
Organization: Sparta
References: <ANECIHCPCBDLLEJLCOPGGEJDECAA.scottr@nist.gov> <a06200701bfc87ccb1424@[10.31.32.117]> <sd4q4vmwfm.fsf@wes.hardakers.net> <8F3F5675-F97D-4588-B190-1CE076CFFF64@verisignlabs.com> <sdek3zhxlk.fsf@wes.hardakers.net> <a06200700bfd6ee0ce5b0@[192.168.1.100]>
User-agent: Gnus/5.110003 (No Gnus v0.3) XEmacs/21.4 (Jumbo Shrimp, linux)

>>>>> On Tue, 27 Dec 2005 08:25:11 -0500, Edward Lewis <Ed.Lewis@neustar.biz> said:

Edward> I cringe when I hear "security will not work" because I have never 
Edward> once heard from a seasoned security practioner "if you do things this 
Edward> way, you will be secure."

Very true.  What you tend to hear instead is "if you do things this
way, you *won't* be secure".  Or in this case "if you do things this
way (SHA-1), you're likely less secure than you would be if you use
this other thing (SHA-256).  At least right now.  Maybe."

Edward> I wouldn't be surprised if, in 5 years, I hear that SHA-256 is
Edward> beaten and now SHA-1 is more secure.

Always a possibility.

-- 
Wes Hardaker
Sparta, Inc.

--
to unsubscribe send a message to namedroppers-request@ops.ietf.org with
the word 'unsubscribe' in a single line as the message text body.
archive: <http://ops.ietf.org/lists/namedroppers/>

References:
- RE: I-D ACTION:draft-ietf-dnsext-ds-sha256-02.txt
  - From: "Scott Rose" <scottr@nist.gov>
- RE: I-D ACTION:draft-ietf-dnsext-ds-sha256-02.txt
  - From: Edward Lewis <Ed.Lewis@neustar.biz>
- Re: I-D ACTION:draft-ietf-dnsext-ds-sha256-02.txt
  - From: Wes Hardaker <hardaker@tislabs.com>
- Re: I-D ACTION:draft-ietf-dnsext-ds-sha256-02.txt
  - From: David Blacka <davidb@verisignlabs.com>
- Re: I-D ACTION:draft-ietf-dnsext-ds-sha256-02.txt
  - From: Wes Hardaker <hardaker@tislabs.com>
- Re: I-D ACTION:draft-ietf-dnsext-ds-sha256-02.txt
  - From: Edward Lewis <Ed.Lewis@neustar.biz>

Prev by Date: Re: I-D ACTION:draft-ietf-dnsext-ds-sha256-02.txt
Next by Date: Re: I-D ACTION:draft-ietf-dnsext-ds-sha256-02.txt
Previous by thread: Re: I-D ACTION:draft-ietf-dnsext-ds-sha256-02.txt
Next by thread: Re: I-D ACTION:draft-ietf-dnsext-ds-sha256-02.txt
Index(es):
- Date
- Thread