Open Menu
AllLocalCommunitiesAbout
lotide
AllLocalCommunitiesAbout
Login

Timeline to remove DSA support in OpenSSH

⁨23⁩ ⁨likes⁩

Submitted ⁨⁨1⁩ ⁨year⁩ ago⁩ by ⁨flexibeast@beehaw.org⁩ to ⁨technology@beehaw.org⁩

https://lists.mindrot.org/pipermail/openssh-unix-announce/2024-January/000156.html

source

Comments

Sort:hotnewtop
  • Toes@ani.social ⁨1⁩ ⁨year⁩ ago

    If anyone out there is still using DSA, they need to be punished for negligence.

    source
  • Hirom@beehaw.org ⁨1⁩ ⁨year⁩ ago

    Finally! I wish OpenSSH also plan making RSA optional at build time, and set a timeline for removal shifted 1 or 2 years after DSA.

    We are also likely to start exploring a post-quantum signature algorithm soon and are mindful of the overall size and complexity of the key/signature code. That’s great news, if OpenSSH contributors commit to this, it may be bigger news than DSA removal.

    source
    • jarfil@beehaw.org ⁨1⁩ ⁨year⁩ ago

      The problem seems to be finding a post-quantum algorithm that doesn’t get obliterated by pre-quantum computers like what happened to SIKE:

      m-cacm.acm.org/news/…/fulltext

      source