Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://akko.erincandescent.net/objects/bb0e8237-f840-4170-a522-befa33b595b2">Erin 💽✨ (erincandescent@akko.erincandescent.net)'s status on Sunday, 01-Sep-2024 22:40:32 JST</a><a href="https://akko.erincandescent.net/users/erincandescent" title="erincandescent@akko.erincandescent.net"><img src="https://gnusocial.jp/avatar/242079-48-20240514235327.webp" width="48" height="48" alt="Erin 💽✨" style="position: absolute; left: 0; top: 0;">Erin 💽✨</a><div><a href="https://gnusocial.jp/notice/7058774" rel="in-reply-to">in reply to</a><ul><li><li><a href="https://gnusocial.jp/user/12401" title="q@glauca.space">Q ✨</a></li><li><a href="https://gnusocial.jp/user/79514" title="dequbed@mastodon.chaosfield.at">nadja</a></li><li><a href="https://gnusocial.jp/user/250095" title="theresnotime@fox.nexus">Sammy Fox  :nonbinaryFlag:</a></li></ul></div></section><article><p><a href="https://mastodon.chaosfield.at/@dequbed">@dequbed</a> <a href="https://cathode.church/@Gaelan">@Gaelan</a> <a href="https://fox.nexus/@theresnotime">@theresnotime</a> <a href="https://glauca.space/@q">@q</a> <a href="https://social.shadowkat.net/users/izaya">@izaya</a> cryptographically they’re basically identical. Heck, I expected to be conceding “OK, SSH CAs use RSA with PSS instead of PKCS#1 v1.5 padding <a href="https://datatracker.ietf.org/doc/html/rfc8332#section-3">but no, we’re still using PKCS#1 v1.5 padding in a standard defined in 2018</a>! :drgn_knife_angry: </p><p>So cryptographically there’s no difference between SSH rsa-sha2-256 and X.509 {iso(1) member-body(2) us(840) rsadsi(113549) pkcs(1) pkcs-1(1) sha256WithRSAEncryption(11)}</p></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/3598951#notice-7058777">In conversation</a><time datetime="2024-09-01T22:40:32+09:00" title="Sunday, 01-Sep-2024 22:40:32 JST">about 3 months ago</time> <span>from <span><a href="https://akko.erincandescent.net/objects/bb0e8237-f840-4170-a522-befa33b595b2" rel="external" title="Sent from akko.erincandescent.net via ActivityPub">akko.erincandescent.net</a></span></span><a href="https://akko.erincandescent.net/objects/bb0e8237-f840-4170-a522-befa33b595b2">permalink</a></footer></blockquote>

Corresponding Notice

Embed this notice
Erin 💽✨ (erincandescent@akko.erincandescent.net)'s status on Sunday, 01-Sep-2024 22:40:32 JSTErin 💽✨
in reply to
@dequbed @Gaelan @theresnotime @q @izaya cryptographically they’re basically identical. Heck, I expected to be conceding “OK, SSH CAs use RSA with PSS instead of PKCS#1 v1.5 padding but no, we’re still using PKCS#1 v1.5 padding in a standard defined in 2018! :drgn_knife_angry:
So cryptographically there’s no difference between SSH rsa-sha2-256 and X.509 {iso(1) member-body(2) us(840) rsadsi(113549) pkcs(1) pkcs-1(1) sha256WithRSAEncryption(11)}
In conversationabout 3 months ago from akko.erincandescent.netpermalink

Public

Embed Notice

HTML Code

Corresponding Notice