Any reason why SHA-3 isn't yet present in GnuPG?



  • I was curious about setting SHA-3 as the preferred hashing algorithm for GPG but that looks like it is not yet supported and the documentation states this:

    SHA-3: SHA-3 is a completely new hash algorithm that makes a clean break with the previous SHAs. It is believed to be safe, with no warnings about its usage. It hasn’t yet been officially introduced into the OpenPGP standard, and for that reason GnuPG doesn’t support it. However, SHA-3 will probably be incorporated into the spec, and GnuPG will support it as soon as it does.

    What does this mean: "...and GnuPG will support it as soon as it does"?

    Are there any development plans for supporting SHA3 or BLAKE?



  • Are there any development plans for supporting SHA3 or BLAKE?

    These algorithms are already included in the Libgcrypt library. It is only a matter of getting them incorporated into the OpenPGP standard for GnuPG to make use of them.

    The GnuPG developers are working towards getting the OpenPGP Message Format updated from RFC 4880. The current work-in-progress for the new standard can be seen here. SHA3-256 and SHA3-512 are included in the draft, but not BLAKE.



Suggested Topics

  • 2
  • 2
  • 2
  • 2
  • 2
  • 2
  • 2
  • 2