[147593] in cryptography@c2.net mail archive
Re: [Cryptography] Crypto Standards v.s. Engineering habits - Was:
daemon@ATHENA.MIT.EDU (Salz, Rich)
Thu Oct 10 15:19:30 2013
X-Original-To: cryptography@metzdowd.com
From: "Salz, Rich" <rsalz@akamai.com>
To: Watson Ladd <watsonbladd@gmail.com>
Date: Thu, 10 Oct 2013 10:58:57 -0400
In-Reply-To: <CACsn0cnNDddVVjDZzYtuVci=GfLryDG90bipiNtJ=9Pndj6j=Q@mail.gmail.com>
Cc: Cryptography <cryptography@metzdowd.com>
Errors-To: cryptography-bounces+crypto.discuss=bloom-picayune.mit.edu@metzdowd.com
> TLS was designed to support multiple ciphersuites. Unfortunately this opened the door
> to downgrade attacks, and transitioning to protocol versions that wouldn't do this was nontrivial.
> The ciphersuites included all shared certain misfeatures, leading to the current situation.
On the other hand, negotiation let us deploy it in places where full-strength cryptography is/was regulated.
Sometimes half a loaf is better than nothing.
/r$
--
Principal Security Engineer
Akamai Technology
Cambridge, MA
_______________________________________________
The cryptography mailing list
cryptography@metzdowd.com
http://www.metzdowd.com/mailman/listinfo/cryptography
