Gentoo Archives: gentoo-security

From: Florian Philipp <lists@××××××××××××××××××.net>
To: gentoo-security@l.g.o
Subject: Re: [gentoo-security] Encryption Ciphers
Date: Sat, 01 Mar 2008 10:44:23
Message-Id: 1204368208.5915.2.camel@NOTE_GENTOO64.PHHEIMNETZ
In Reply to: Re: [gentoo-security] Encryption Ciphers by Mansour Moufid
On Fri, 2008-02-29 at 22:31 -0500, Mansour Moufid wrote:
> On Fri, Feb 29, 2008 at 9:37 PM, Steffen Schulz <pepe_ml@×××.net> wrote: > > 128bit are considered secure for the next several years. > > > > On that subject, the CSEC (Communications Security Establishment > Canada) publishes an updated summary of safe key cryptoperiods for > different algorithms [1] which I like to use a reference. > > Sincerely, > Mansour Moufid > > [1]
"The use of HMAC with SHA-1 shall be discontinued by the end of 2010." Sounds like there is work to do for the cryptsetup-luks developers... One last thing: Serpent doesn't seem to loose performance when used with larger keys, still 28MB/s with 256bit keys.


File name MIME type
signature.asc application/pgp-signature


Subject Author
Re: [gentoo-security] Encryption Ciphers Calum <caluml@×××××.com>