[dnssec-deployment] aug2004 CAM of interest?
bmanning at vacation.karoshi.com
bmanning at vacation.karoshi.com
Thu Aug 19 11:04:26 EDT 2004
i guess that i am parinoid enouhg to think that the crypto/math guys
will find a practical break in SHA1 long before we/the IETF can settle on
new algo, get it implemented, figure out how to have N+1 algo in use
in the DNS tree, then get a new, mandatory to implement alo though the
IETF and most the old one to historic.
i'd like to think (putting on my claret-tinted shades) tat there are parts
of this migration path that we can nail down sooner than later. we -will-
see this problem eventually and it would be nice to keep the exposure window
smaller than larger. not as pesemistic as Vix.
--bill
More information about the Dnssec-deployment
mailing list