available crypto policies
Nikos Mavrogiannopoulos
nmav at redhat.com
Thu Mar 27 12:06:58 UTC 2014
On Thu, 2014-03-27 at 12:49 +0100, Florian Weimer wrote:
> On 03/27/2014 12:13 PM, Nikos Mavrogiannopoulos wrote:
>
> > For the purposes of the Crypto Policies change proposal [0], I think
> > I've settled to the following three policy levels (inspired by the ENISA
> > levels but with a rename of the good LEGACY level to DEFAULT). Any
> > comments or suggestions are appreciated.
>
> Do you expect that the signature algorithm restrictions will apply to
> the self-signatures as well?
No, not really. I will make it explicit, but I don't think there are
libraries that currently enforce restrictions on the self signatures.
regards,
Nikos
More information about the security
mailing list