On Fri, 2008-02-29 at 22:31 -0500, Mansour Moufid wrote:
> On Fri, Feb 29, 2008 at 9:37 PM, Steffen Schulz <pepe_ml@...> wrote:
> >  128bit are considered secure for the next several years.
> >
> 
> On that subject, the CSEC (Communications Security Establishment
> Canada) publishes an updated summary of safe key cryptoperiods for
> different algorithms [1] which I like to use a reference.
> 
> Sincerely,
> Mansour Moufid
> 
> [1] http://www.cse-cst.gc.ca/services/crypto-services/crypto-algorithms-e.html

"The use of HMAC with SHA-1 shall be discontinued by the end of 2010."

Sounds like there is work to do for the cryptsetup-luks developers...

One last thing: Serpent doesn't seem to loose performance when used with
larger keys, still 28MB/s with 256bit keys.