On 12/12/24 05:15, Werner Koch wrote:
On Wed, 11 Dec 2024 22:39, Jacob Bachmeyer said:
The problem is that strong algorithms *become* weak without advance
warning. Therefore, it is necessary to take measures to reduce the
But we don't know in which way they become weak. You can't exclude that
a new weakness is leveraged by the extra random salt [1]
So that would make adding salted signatures neutral: they protect
against one class of unknown attacks but could also enable another class
of unknown attacks.
[...]
[1] We are talking about a salt and not a nonce (number-used-once).
Now I have to ask: how is a salt different from a nonce?
-- Jacob
_______________________________________________
Gnupg-devel mailing list
[email protected]
https://lists.gnupg.org/mailman/listinfo/gnupg-devel
