JeremyRand
commented
9 years ago Hello @ryancdotorg, any news on this?
Open indolering opened 9 years ago
JeremyRand
commented
9 years ago Hello @ryancdotorg, any news on this?
indolering
commented
9 years ago FWIW, I would like to enforce a minimum of two hashes with 128 bit security level (256 + 256 bit output). SHA-3 should be done sometime in the fall.
It should be noted that two hashes do not add up to a combined 256 bit level of security, the security is roughly as good as the strongest hash.
ryancdotorg
commented
9 years ago Where is the doc?
JeremyRand
commented
9 years ago JeremyRand
commented
9 years ago @indolering I'm not 100% sure what you're proposing. If necessary can you start another issue for that?
indolering
commented
9 years ago @indolering I'm not 100% sure what you're proposing. If necessary can you start another issue for that?
I don't know what I'm proposing either, I've just been nerding out on hash functions for a few weeks and thought it might be tangentially relevant. FWIW the current FIPS 202 draft (SHA-3 standard for SHA-2 drop-ins) is basically final, it is literally awaiting the signature of the Secretary of Commerce.
hlandau
commented
9 years ago I'm against any requirement that isn't already in the DANE spec.
@ryancdotorg has requested time to give feedback on the "tls" field spec in d/. We should wait for his feedback before finalizing.