[147543] in cryptography@c2.net mail archive
[Cryptography] Universal security measures for crypto primitives
daemon@ATHENA.MIT.EDU (Peter Gutmann)
Mon Oct 7 09:56:25 2013
X-Original-To: cryptography@metzdowd.com
Date: Mon, 07 Oct 2013 18:43:27 +1300
From: Peter Gutmann <pgut001@cs.auckland.ac.nz>
To: cryptography@metzdowd.com
Errors-To: cryptography-bounces+crypto.discuss=bloom-picayune.mit.edu@metzdowd.com
Given the recent debate about security levels for different key sizes, the
following paper by Lenstra, Kleinjung, and Thome may be of interest:
"Universal security from bits and mips to pools, lakes and beyond"
http://eprint.iacr.org/2013/635.pdf
From now on I think anyone who wants to argue about resistance to NSA attack
should be required to rate their pet scheme in terms of
neerslagverdampingsenergiebehoeftezekerheid (although I'm tempted to suggest
the alternative tausendliterbierverdampfungssicherheit, it'd be too easy to
cheat on that one).
Peter.
_______________________________________________
The cryptography mailing list
cryptography@metzdowd.com
http://www.metzdowd.com/mailman/listinfo/cryptography