[Bug 25569] New: Suggest adding recommended algorithms to Section 18.2 from bugzilla@jessica.w3.org on 2014-05-06 (public-webcrypto@w3.org from May 2014)

From: <bugzilla@jessica.w3.org>
Date: Tue, 06 May 2014 05:51:05 +0000
To: public-webcrypto@w3.org
Message-ID: <bug-25569-7213@http.www.w3.org/Bugs/Public/>

https://www.w3.org/Bugs/Public/show_bug.cgi?id=25569

            Bug ID: 25569
           Summary: Suggest adding recommended algorithms to Section 18.2
           Product: Web Cryptography
           Version: unspecified
          Hardware: PC
                OS: Windows NT
            Status: NEW
          Severity: normal
          Priority: P2
         Component: Web Cryptography API Document
          Assignee: sleevi@google.com
          Reporter: vijaybh@microsoft.com
                CC: public-webcrypto@w3.org

Section 18.2 lists recommended algorithms for implementers to promote
interoperability. This list is based on a mixture of criteria including
cryptographic strength and breadth of adoption. Based on these criteria, the
following algorithms (adopted by JOSE when working from similar criteria) are
candidates for adding to this section:

•         RSASSA-PKCS1-v1_5 using SHA-256 (This is in the Recommended set for
JOSE, and more secure than the SHA-1 variant in the spec.)
•         RSA-OAEP using SHA-1 and MGF1 with SHA-1 (This is the RFC 3447
default and the mostly widely deployed OAEP variant. It is also the variant
used by JOSE)

(also see discussion at
http://lists.w3.org/Archives/Public/public-webcrypto/2014Apr/0085.html)

-- 
You are receiving this mail because:
You are on the CC list for the bug.

Received on Tuesday, 6 May 2014 05:51:06 UTC