Hacker News new | ask | show | jobs
by maqp 53 days ago
Could we finally get SHA256 fingerprints. Or BLAKE2, or SHA3-256, or SHAKE256, or BLAKE3, or LITERALLY ANYTHING BUT SHA-1, pretty please?
1 comments
upofadown 53 days ago
Yes. Both standards proposals have SHA256 fingerprints.

Not that there is anything wrong with SHA1 fingerprints in practice. The sort of collisions that SHA1 is susceptible to are not an issue in this particular application. With SHA256 fingerprints people would still be using 64 bit key IDs, just like they are doing now.

link
maqp 50 days ago
Thank goodness. Finally. Yeah I'm just not comfortable with 80-bit complexity against Grover, even if it's practically infeasible.
link
Valodim 53 days ago
Rfc9580 is not a proposal anymore, it's a published RFC.

(I suppose strictly speaking it's still a "proposed standard" vs "internet standard", but so is basically everything else)

link