Information on DSS-2 and new hashes

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

I'm sitting in an auditorium at the NSF CyberTrust Workshop
being held
in Menlo Park, California.  My advisor's plane got grounded
in O'Hare
due to the recent snowstorm and so he's unable to attend. 
I'm sitting
in his place, with Ron Rivest on one side of me, Avi Rubin
one seat past
him, David Wagner further on down, with Josh Benaloh
rounding out the
crop.  I have never before felt so insignificant in the
world of
computer security.

I struck up a conversation with various and sundry people
over lunch,
asking people from NIST and people well-known for their
involvement in
crypto and hash functions questions about when we were going
to see
DSS-2... after all, shouldn't it have come out some time
ago?

So far the unanimous answer has been "DSS-2?  What? 
Nobody told me
about that."

Nobody, literally _nobody_ is aware of any current work on
DSS-2.  I've
been referred to something called Suite B, which is a new
DoD standard
for digital signatures incorporating ECC and other more
recent
developments, but there's been nothing about any extensions
or revisions
to DSS.

Please note that I am _not_ saying DSS-2 is nonexistent. 
All that I'm
saying is that the people who I would expect to be following
DSS-2 have
literally never heard of it.

Other news: Rivest says that the SHA-2 series "appear
immune" to the
SHA-1 attack.  He immediately qualified that statement by
saying that
the SHA-1 attack was very surprising and he wasn't ruling
out the
possibility of other very surprising attacks against the
SHA-2 family;
however, for the moment, the SHA-2 family is the best game
in town.  I
asked him if the SHA-2 family were a long-term solution
given that it's
a FIPS, and his response was (understandably) ambivalent--it
amounted to
"its term is until someone finds a good attack against
it, whenever that
is".  I asked about future developments in hash
functions, and he
indicated things were moving very slowly and we shouldn't
expect any new
FIPS for another couple of years.

The conference is going well, but I'm unable to comment on
its content.

More stuff later.

Obligatory legalese: *Ask me for permission before you
reprint this
elsewhere*.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (MingW32)

iQIcBAEBCgAGBQJD9koeAAoJECIVXNyTGwuwoVQP/A6uKSnkRi/dqL9dht+f
71SS
f95/xV7CGBXGTR5L96NTIkie0ciJ2QxbwG1SueHE0bv8bt815kZETLVXOT4s
YCK5
LkNj2AQlPTLXrYUFuUZSPfwAzitlPyR/gTwxWwlLLxi22nWW6vnkKVBLPPse
mbM9
sCGCioRbdCzE0ZE88ZGENLIhRqJDDfpz1nU1ldktZQoZBU0gXfkF7RXOW0d7
amCN
aa6/1a7cMrN8y/sZEzm95UuclO1bxe/Y2/B3Qcynv7bud7NQG27tAfZNiVnK
M3i7
32oOKgcwF+X2Sxo59ENw9Hs1Yt7Xk+mEYCUHP2lrkBXkFXQBCHJWWoeVrk5C
HQO6
YptUHFtrBtdsSVEKF1/O7WapzsmkWX2YFcr2n6EF3r9bLJVRKSxx16WKiY57
zvzF
SnG4JoJzVS1RO2ccq/AMP4Ou4ttvNXI4OfgS9z4CsDmZFZrQY+qIbppTGNo5
Viud
atO/obhhlZg+CPr5UmrkyVkA7huAbrvEDFdGN41Ow5u6pE8dGcdU01LDrsyj
bDt0
mim7Oxe3pIUUWUKcDR0vVBniXfyxHksL2/U/T51R0s3poJ98wY9BwwPbULim
+Xsc
EiPHxQcTzMgTe0/rJV9yMFK++KOm5rLtBNxtYt3h3KANv5X4bK+LgzvPLaEb
hpbs
/qlDL1/V89rS7XSPcynG
=QO9z
-----END PGP SIGNATURE-----


____________________________________________________________
__
Archives:         htt
p://groups.yahoo.com/group/PGP-Basics/messages
OT List:          http://gr
oups.yahoo.com/group/PGP-Basics-OT
OT Subscribe:    
mailto:PGP-Basics-OT-subscribe@yahoogroups.com 
Yahoo! Groups Links

<*> To visit your group on the web, go to:
    http://grou
ps.yahoo.com/group/PGP-Basics/

<*> To unsubscribe from this group, send an email to:
    PGP-Basics-unsubscribe@yahoogroups.com

<*> Your use of Yahoo! Groups is subject to:
    http://docs.yahoo.c
om/info/terms/
 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: TIGER192

— —
— —
— — ·
— — ·
— —      Was another beautiful day, 06-02-17, at 16:11:42
-0600,
— — ·    when Robert J. Hansen wrote:

> Obligatory legalese: *Ask me for permission before you
reprint this
> elsewhere*.

Well, once we are in position to verify your signature, we
most probably
shall.

Is it retelling allowed? (-: Those are very piquant
informations from
the very source of crypto nobility so I doubt that just
everyone will
resist such a valuable morsel.

- --
Mica
~~~ For personal mail please use my address as it is
*exactly* given
                 in my "From|Reply To" field(s).
~~~
PGP public keys at: http://blueness.po
rt5.com/pgpkeys/
OSs: Windows 98 SE Micro Lite Professional IVa Enterprise
Millennium
     Windows XP(ee) Micro Lite Professional 1.6
     Linuxes: Gentoo, Vector, Slackware, ZipSlack and
Xandros
-----BEGIN PGP SIGNATURE-----

iQEVAwUBQ/Zd3LSpHvHEUtv8AQZ7jAgAhThUGJ8hderWND719mxaVG38r69d
yFI0
tVpFwndV10lK2Mh7hUsnavUc6uyIEnopZVhj7u6YlHu/qNSqN0/oySvZBIG4
r4I1
kjc/6RwV+abyS8ze7sFqTTsJq/EvmPA1toKyJa4I3nZ2hmXfNU7Ui5VwVN8d
U8Su
l3AN9rWcFGd3rNcH4fCedK2pHEfqu0u0Qurn7s9VuCLM6E1VKDixkPcFAMFk
y4s4
IsLc8lNZsXdRZec+1bOhVVTfnkS6vD8SGudGcDUUR7JGyFrb2lbTsm9M9X5V
XLzv
WGnKq4XBELugLNkLE1MP4wBI+f9zP+PqpKL+NeO/ch8UI6pncxbJQw==
=z3Gr
-----END PGP SIGNATURE-----



____________________________________________________________
__
Archives:         htt
p://groups.yahoo.com/group/PGP-Basics/messages
OT List:          http://gr
oups.yahoo.com/group/PGP-Basics-OT
OT Subscribe:    
mailto:PGP-Basics-OT-subscribe@yahoogroups.com 
Yahoo! Groups Links

<*> To visit your group on the web, go to:
    http://grou
ps.yahoo.com/group/PGP-Basics/

<*> To unsubscribe from this group, send an email to:
    PGP-Basics-unsubscribe@yahoogroups.com

<*> Your use of Yahoo! Groups is subject to:
    http://docs.yahoo.c
om/info/terms/
 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Mica Mijatovic wrote:

> Well, once we are in position to verify your signature,
we
most probably
> shall.
>
> Is it retelling allowed? (-: Those are very piquant
informations from
> the very source of crypto nobility so I doubt that just
everyone will
> resist such a valuable morsel.
>

Sorry Mica, but I show a 'Bad Sig' on this Post.

JOHN :(
Timestamp: Friday 17 Feb 2006, 18:50  --500 (Eastern
Standard
Time)

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.3rc1: (MingW32) - GPGshell v3.50
Comment: Public Key at:  http://tinyurl.com/8cpho
Comment: Gossamer Spider Web of Trust: http://www.gswot.org
Comment: Homepage:  http://tinyurl.com/9ubue

iQIcBAEBAgAGBQJD9mFXAAoJECIVXNyTGwuwbTcP/1d5p4PuxMKVsHPNWKCt
kkEw
QzhREz+ghdjqU2xW3DrqX8tFNtqvXWrs0EP9VXGtrpOEXs+9/8ODAsTYw6fP
WY6E
PegXksQqj8C71d67/c6EGq0mX2XQjnyY2lzFH2yukqj8bErCk3DjMHGAe788
zwpI
J3/RtkxVqA8z5spwdxEQOltjBQoXFqNYZ9tRhW4w8nEBlBvLJ5HSOJz96UG/
fGZH
70lsSfC1+ftVl3tiKbwCkb7NhhAqKGsUVanlML4iWB0JURozAdIuHl/G3num
LTor
Q2uxHjyaGSRIjzJGZXa7Rm66TngAaXWdTavEU+W+VxCCcqFsf8q1F5rmRPhr
jxSs
k94Bnek1NVGLaLnfg3dLhjh9mWAu/x1evWeEpDXkS9/R/z56wXUTfF+f5lYk
eG3r
ks2+smpaYdBCIfomcRtIAI7tMx0172q9WSYB+WBHHtpI1nx9fKCLI0iMvyJE
o3+t
IRKTP852FLRQO6+UTx+1DkrKtwuWLIMGWylnMspZi6G4+cPRCaraNZ+A4Exo
/DW4
8MASkCquy9t2wuNMa8Jpdud7a9+gzpZeG8oCzEQw8Nq8//0Ry8064QSHMQqk
lswT
PmlV12pJnjtOtNQLwealT3hvcH8xr3rDVifQ4g6jeZ4vqpA8dRljBzmvVyJx
USBI
bmvxjqByKVcUgdCQ1543
=5/uZ
-----END PGP SIGNATURE-----


____________________________________________________________
__
Archives:         htt
p://groups.yahoo.com/group/PGP-Basics/messages
OT List:          http://gr
oups.yahoo.com/group/PGP-Basics-OT
OT Subscribe:    
mailto:PGP-Basics-OT-subscribe@yahoogroups.com 
Yahoo! Groups Links

<*> To visit your group on the web, go to:
    http://grou
ps.yahoo.com/group/PGP-Basics/

<*> To unsubscribe from this group, send an email to:
    PGP-Basics-unsubscribe@yahoogroups.com

<*> Your use of Yahoo! Groups is subject to:
    http://docs.yahoo.c
om/info/terms/
 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: RIPEMD160

———
——— ·
— —
——— ·
——— ·    Was another beautiful day, 06-02-18, at 18:51:02
-0500,
— — ·    when John W. Moore III wrote:

> Mica Mijatovic wrote:

>> Well, once we are in position to verify your
signature, we

[...]

> Sorry Mica, but I show a 'Bad Sig' on this Post.

Thanks, John. Here it arrived with signature
"Good":

gpg: Signature made 02/18/06 00:35:56 Central Europe
Standard Time using RSA key ID C452DBFC
gpg: Good signature from "Mica Mijatovic (jinjin)
<000>"

- --
Mica
~~~ For personal mail please use my address as it is
*exactly* given
                 in my "From|Reply To" field(s).
~~~
PGP public keys at: http://blueness.po
rt5.com/pgpkeys/
OSs: Windows 98 SE Micro Lite Professional IVa Enterprise
Millennium
     Windows XP(ee) Micro Lite Professional 1.6
     Linuxes: Gentoo, Vector, Slackware, ZipSlack and
Xandros
-----BEGIN PGP SIGNATURE-----

iQEVAwUBQ/Zvf7SpHvHEUtv8AQNleAgAsGaMv/s9LYKzv3DWQvdDccqmTVoA
JpDk
oNw9vNeXv8wI2kEejSwdmfvoj9jhCap1JPK/aW1rA+yuDJINXtEhVel2eC7H
hq3x
qW/WV8xbYRQ2boYtuQYrufxYxRlfVx18PdYpWMlYMix3H4MpdIcBAWtHSOD5
1hu7
tQW6+1maJnVpCn0sfI54ZzZM4FJWGDKS25ue4Nk69XTjut51jONehCqGexst
QxtG
s2dgRT5Ih2hg+/hg++zeAGMAIOdpxJ9jxOxjma+UMaw1FnUoPtmBPSKkrGS4
+I49
e87DDtvIFalb4otASk55Z0xsFDXKC3KiOoX4ikv6VG2F8SsEWxhzxA==
=+pll
-----END PGP SIGNATURE-----



____________________________________________________________
__
Archives:         htt
p://groups.yahoo.com/group/PGP-Basics/messages
OT List:          http://gr
oups.yahoo.com/group/PGP-Basics-OT
OT Subscribe:    
mailto:PGP-Basics-OT-subscribe@yahoogroups.com 
Yahoo! Groups Links

<*> To visit your group on the web, go to:
    http://grou
ps.yahoo.com/group/PGP-Basics/

<*> To unsubscribe from this group, send an email to:
    PGP-Basics-unsubscribe@yahoogroups.com

<*> Your use of Yahoo! Groups is subject to:
    http://docs.yahoo.c
om/info/terms/