[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: I-D ACTION:draft-zeilenga-ldap-authpasswd-03.txt

To: Rich Salz <rsalz@caveosystems.com>
Subject: Re: I-D ACTION:draft-zeilenga-ldap-authpasswd-03.txt
From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
Date: Fri, 14 Jul 2000 10:43:54 -0700
Cc: ietf-ldapext@netscape.com
In-reply-to: <396F4929.D074FD85@caveosystems.com>
References: <200007131027.GAA11142@ietf.org> <4.3.2.7.0.20000714084856.00b3f9f0@infidel.boolean.net>

At 01:08 PM 7/14/00 -0400, Rich Salz wrote:
>> Because if a flaw is found in the SHA-1 algorithm, your
>> directory would be vulnerable to attack if you exposed
>> SHA-1 values.
>
>If a flaw is found in SHA-1 then the entire public-key world will fall
>apart.

Note that in the public key world it is generally recommended to
key private keys protected by multiple layers of security.

References:
- I-D ACTION:draft-zeilenga-ldap-authpasswd-03.txt
  - From: Internet-Drafts@ietf.org
- Re: I-D ACTION:draft-zeilenga-ldap-authpasswd-03.txt
  - From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
- Re: I-D ACTION:draft-zeilenga-ldap-authpasswd-03.txt
  - From: Rich Salz <rsalz@caveosystems.com>

Prev by Date: Re: I-D ACTION:draft-ietf-ldapext-refer-00.txt
Next by Date: Re: I-D ACTION:draft-zeilenga-ldap-authpasswd-03.txt
Index(es):
- Chronological
- Thread