[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: AES-256 vs AES-128

To: John Wilkinson <jwilkinson@xxxxxxxxx>
Subject: Re: AES-256 vs AES-128
From: "Steven M. Bellovin" <smb@xxxxxxxxxxxxxxxx>
Date: Sat, 31 May 2003 18:55:56 -0400
Cc: ietf-openpgp@xxxxxxx
List-archive: <http://www.imc.org/ietf-openpgp/mail-archive/>
List-id: <ietf-openpgp.imc.org>
List-unsubscribe: <mailto:ietf-openpgp-request@imc.org?body=unsubscribe>
Sender: owner-ietf-openpgp@xxxxxxxxxxxx

In message <3ED91C35.6070807@xxxxxxxxx>, John Wilkinson writes:
>
>Ian Grigg wrote:
>
>>I think it's pretty clear that both AES versions
>>should stay in OpenPGP.  Until the market reaches
>>some sort of consensus that an algorithm is dead,
>>discussions on the relative strengths argument would
>>appear not to be directly relevant to OpenPGP's
>>standardisation efforts?
>>
>Agreed. As long as the MUST have cipher is 3DES, we have no problems. 
>When and if (hopefully never) OpenPGP chooses to deprecate 3DES in favor 
>of some other cipher, be prepared for a battle...
>
>
>
AD hat on...  I would be unhappy if AES -- pick your key size -- were a 
SHOULD instead of a MUST.

		--Steve Bellovin, http://www.research.att.com/~smb (me)
		http://www.wilyhacker.com (2nd edition of "Firewalls" book)

Prev by Date: Re: AES-256 vs AES-128
Next by Date: Re: AES-256 vs AES-128
Previous by thread: Re: AES-256 vs AES-128 (Re: Suggested DER Prefixes)
Next by thread: Re: AES-256 vs AES-128
Index(es):
- Date
- Thread