What is currently recommended? (New v Old)
William Allen Simpson
wsimpson at greendragon.com
Tue Jun 3 11:54:19 EDT 2003
Jill.Ramonsky at Aculab.com wrote:
>
> I confess to being confused - though admittedly part of the blame for this
> is my own ignorance.
>
I'll second that. I've been considering a new release of Photuris, in
honor of its upcoming 10th anniversary, and was wondering what should be
the "best" defaults?
> Now these once-'standard' algorithms are no longer encouraged. The new
> versions of PGP seem to prefer CAST instead of IDEA, DH/DSS instead of RSA,
> and SHA-1 instead of MD5.
>
Or should the hash be SHA-256? Or is RIPEMD still going strong?
I've seen a number of messages disparaging MD5 as possible to be broken
(in the next decade or so, or speculated already), but no firm
recommendations on the replacement....
Likewise, CAST versus Blowfish versus AES (Rijndael) versus ....
Now, I know when you rub 2 cryptographers together, you get (2**2)-1
opinions; but I'm getting rather tired of the continual griping without
solid recommended alternatives....
--
William Allen Simpson
Key fingerprint = 17 40 5E 67 15 6F 31 26 DD 0D B9 9B 6A 15 2C 32
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at metzdowd.com
More information about the cryptography
mailing list