From owner-freebsd-questions@FreeBSD.ORG Sun Mar 2 18:52:57 2014 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id D556169B for ; Sun, 2 Mar 2014 18:52:57 +0000 (UTC) Received: from mail-pa0-x22e.google.com (mail-pa0-x22e.google.com [IPv6:2607:f8b0:400e:c03::22e]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (No client certificate requested) by mx1.freebsd.org (Postfix) with ESMTPS id A9B761C86 for ; Sun, 2 Mar 2014 18:52:57 +0000 (UTC) Received: by mail-pa0-f46.google.com with SMTP id kp14so2774507pab.19 for ; Sun, 02 Mar 2014 10:52:57 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type; bh=Om07bpKxkwbwD1N2c7vGMajp6UgKBq2Uf8Tt9hi2a8c=; b=Y3/0HEn+Gke8XpU/N9SHAXTzr1QnfmhkuGzg4ZjJPGOAGEQ9sHV1DMbCZxkAnefDDb ueQNRTvVMAVaTwbh/cXWVH9oiIFP0eI7pfwpZFOKoAaRSDyNpLXClm2FMnAIJYNp83YL doDS1DU35MW9OqGS4qTdZvRVSibDHbXnOEo8ae0HzodyjdTZXTNqHvGEH4hkqEeSRLp8 EVw/mfFRp/l/U9o9uZ0dCD9zaxWUBvvuu1J4u6Xo9F+2BC7BoPSDCx5p4prbNDhrWE5D j4Van1nEbEi7VPlMaYNHPQpW0PIUlhq3Kv7RPY/W6VgfJeJETIGL1KEDZgI+hxlR9V1L 8M5w== MIME-Version: 1.0 X-Received: by 10.66.121.231 with SMTP id ln7mr1887355pab.33.1393786377024; Sun, 02 Mar 2014 10:52:57 -0800 (PST) Received: by 10.68.184.3 with HTTP; Sun, 2 Mar 2014 10:52:56 -0800 (PST) In-Reply-To: <20140302183855.GA5308@hp-netbook.local> References: <20140302172759.GA4728@hp-netbook.local> <20140302174314.GA4932@hp-netbook.local> <20140302183855.GA5308@hp-netbook.local> Date: Sun, 2 Mar 2014 08:52:56 -1000 Message-ID: Subject: Re: Cryptografically signed ISO images From: Kent Kuriyama To: FreeBSD Questions Content-Type: text/plain; charset=ISO-8859-1 X-Content-Filtered-By: Mailman/MimeDel 2.1.17 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 02 Mar 2014 18:52:57 -0000 Elias, If the use of SHA-2 hashes don't provide enough assurance that the ISO images are authentic can you explain the crypto technology that you are looking for? Digitally signatures would enable one to verify that the published hashes are indeed from a trusted source - Is that what you are seeking? On Sun, Mar 2, 2014 at 8:38 AM, Elias Diem wrote: > On 2014-03-02, Anton Sayetsky wrote: > > > Partly. > > > > http://en.wikipedia.org/wiki/SHA-2 > > > SHA-2 is a set of cryptographic hash functions (SHA-224, SHA-256, > SHA-384, SHA-512, SHA-512/224, SHA-512/256) designed by the U.S. National > Security Agency (NSA) and published in 2001 by the NIST as a U.S. Federal > Information Processing Standard (FIPS). > > Ah well, I was looking for a signature (like PGP or > something). > > I therefore assume that there are no crypto signatures, > "only" checksums. > > > I forgot to say that checksums are also present in all release > announcements. > > That might help a bit. > > -- > Greetings > Elias > > > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to " > freebsd-questions-unsubscribe@freebsd.org" >