W3C home > Mailing lists > Public > public-webcrypto@w3.org > May 2014

[Bug 25607] Need to advise authors about security considerations

From: <bugzilla@jessica.w3.org>
Date: Thu, 08 May 2014 21:04:06 +0000
To: public-webcrypto@w3.org
Message-ID: <bug-25607-7213-MRCDyCBXNk@http.www.w3.org/Bugs/Public/>
https://www.w3.org/Bugs/Public/show_bug.cgi?id=25607

--- Comment #3 from Rich Salz <rsalz@akamai.com> ---
Also, attacks get better and weak crypto does not get stronger. So while the
warnings may become incomplete over time, the ones given here will never become
wrong.

I disagree with your assessment about fixing the other bugs.

I only mentioned MD2 and MD5 in case someone followed the RFC for PKCS1 and
wanted to have complete support for it. If you want to drop that sentence,
fine.

-- 
You are receiving this mail because:
You are on the CC list for the bug.
Received on Thursday, 8 May 2014 21:04:07 UTC

This archive was generated by hypermail 2.3.1 : Tuesday, 6 January 2015 21:17:22 UTC