[147358] in cryptography@c2.net mail archive
Re: [Cryptography] NIST about to weaken SHA3?
daemon@ATHENA.MIT.EDU (James A. Donald)
Mon Sep 30 18:37:25 2013
X-Original-To: cryptography@metzdowd.com
Date: Tue, 01 Oct 2013 07:21:03 +1000
From: "James A. Donald" <jamesd@echeque.com>
To: cryptography@metzdowd.com
In-Reply-To: <20130930144417.GO29796@mournblade.imrryr.org>
Reply-To: jamesd@echeque.com
Errors-To: cryptography-bounces+crypto.discuss=bloom-picayune.mit.edu@metzdowd.com
On 2013-10-01 00:44, Viktor Dukhovni wrote:
> Should one also accuse ESTREAM of maliciously weakening SALSA? Or
> might one admit the possibility that winning designs in contests
> are at times quite conservative and that one can reasonably
> standardize less conservative parameters that are more competitive
> in software?
"less conservative" means weaker.
Weaker in ways that the NSA has examined, and the people that chose the
winning design have not.
Why then hold a contest and invite outside scrutiny in the first place.?
This is simply a brand new unexplained secret design emerging from the
bowels of the NSA, which already gave us a variety of backdoored crypto.
The design process, the contest, the public examination, was a lie.
Therefore, the design is a lie.
_______________________________________________
The cryptography mailing list
cryptography@metzdowd.com
http://www.metzdowd.com/mailman/listinfo/cryptography
