Re: draft-ietf-dnsext-dnssec-gost

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 





Martin Rex пишет:

Admittedly, I know very little about the cryptographic
details, but there are two GOST signature algorithms
(GOST R34.10-1994 and GOST R34.10-2001). The earlier
appears to bear some similarity with DH, the newer appears to bear
similarity with ECDH.

Whether and how much the -1994 version is
deprecated is also a complete mystery.
It is written in the text of GOST -2001



 2. GOST R 34.10-2001 was accepted and activated by the Act 380-st of
   12.09.2001 issued by the Russian federal committee for standards.

   ...

   4. GOST R 34.10-2001 replaces GOST R 34.10-94.

So, GOST -1994 for digital signature _is_ deprecated and replaced from 12.09.2001.

The transition period is not stated explicitly because it is obvious from standard procedure of certification in Russia.

No certificate can be issued for any hardware/software using -1994 algorithm after 12.09.2001 and the certification period is 3 years.

So, after 12.09.2004 there can be no operating hardware/software using -1994 algorithm.

Just that simple. ;)

dol@
_______________________________________________
Ietf mailing list
Ietf@xxxxxxxx
https://www.ietf.org/mailman/listinfo/ietf


[Index of Archives]     [IETF Annoucements]     [IETF]     [IP Storage]     [Yosemite News]     [Linux SCTP]     [Linux Newbies]     [Fedora Users]