The latest Flash vulnerability and monoculture

Peter Gutmann pgut001 at
Mon Jul 27 01:08:10 EDT 2009

"Perry E. Metzger" <perry at> writes:
>Jerry Leichter <leichter at> writes:
>> One way or another, a single implementation usually wins out in the
>> OSS community.
>See above -- even counting only open source, we have *many* implementations.
>Heck, there are even multiple independent open source SSL, SSH and PGP

That's because crypto is cool, and it's so simple that absolutely anyone who's
read the first two chapters of Applied Cryptography can do it.  Writing,
tuning, and debugging video codecs on the other hand is only slightly more
interesting than developing accounts receivable software, only five people on
earth really understand how they work, and at least two of them aren't allowed
near sharp objects because of what they might do with them.


The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo at

More information about the cryptography mailing list