[147306] in cryptography@c2.net mail archive
Re: [Cryptography] forward-secrecy >=2048-bit in legacy
daemon@ATHENA.MIT.EDU (Peter Gutmann)
Thu Sep 26 06:06:15 2013
X-Original-To: cryptography@metzdowd.com
Date: Thu, 26 Sep 2013 11:40:33 +1200
From: Peter Gutmann <pgut001@cs.auckland.ac.nz>
To: adam@cypherspace.org, pgut001@cs.auckland.ac.nz
In-Reply-To: <20130925122506.GA26838@netbook.cypherspace.org>
Cc: zenadsl6186@zen.co.uk, cryptography@randombit.net, paul.hoffman@vpnc.org,
perry@piermont.com, code@funwithsoftware.org, cryptography@metzdowd.com
Errors-To: cryptography-bounces+crypto.discuss=bloom-picayune.mit.edu@metzdowd.com
Adam Back <adam@cypherspace.org> writes:
>Is there a possibility with RSA-RSA ciphersuite to have a certified RSA
>signing key, but that key is used to sign an RS key negotiation?
Yes, but not in the way you want. This is what the 1990s-vintage RSA export
ciphersuites did, but they were designed so you couldn't use them to provide
strong security.
>I imagine that ciphersuite is widely disabled at this point.
That'd be the other problem :-).
Peter.
_______________________________________________
The cryptography mailing list
cryptography@metzdowd.com
http://www.metzdowd.com/mailman/listinfo/cryptography
