On 03/27/2014 12:13 PM, Nikos Mavrogiannopoulos wrote:
For the purposes of the Crypto Policies change proposal [0], I
think
I've settled to the following three policy levels (inspired by the ENISA
levels but with a rename of the good LEGACY level to DEFAULT). Any
comments or suggestions are appreciated.
Do you expect that the signature algorithm restrictions will apply to
the self-signatures as well?
--
Florian Weimer / Red Hat Product Security Team