[147535] in cryptography@c2.net mail archive
Re: [Cryptography] Crypto Standards v.s. Engineering habits - Was:
daemon@ATHENA.MIT.EDU (John Kelsey)
Mon Oct 7 09:50:22 2013
X-Original-To: cryptography@metzdowd.com
In-Reply-To: <20131006150211.GA7374@gmail.com>
From: John Kelsey <crypto.jmk@gmail.com>
Date: Sun, 6 Oct 2013 11:26:11 -0400
To: Nico Williams <nico@cryptonector.com>
Cc: Jerry Leichter <leichter@lrw.com>,
"cryptography@metzdowd.com List" <cryptography@metzdowd.com>,
Christoph Anton Mitterer <calestyo@scientia.net>,
james hughes <hughejp@mac.com>,
Dirk-Willem van Gulik <dirkx@webweaving.org>
Errors-To: cryptography-bounces+crypto.discuss=bloom-picayune.mit.edu@metzdowd.com
If we can't select ciphersuites that we are sure we will always be comfortable with (for at least some forseeable lifetime) then we urgently need the ability to *stop* using them at some point. The examples of MD5 and RC4 make that pretty clear.
Ceasing to use one particular encryption algorithm in something like SSL/TLS should be the easiest case--we don't have to worry about old signatures/certificates using the outdated algorithm or anything. And yet we can't reliably do even that.
--John
_______________________________________________
The cryptography mailing list
cryptography@metzdowd.com
http://www.metzdowd.com/mailman/listinfo/cryptography