[Cryptography] Crypto Standards v.s. Engineering habits - Was: NIST about to weaken SHA3?
James A. Donald
jamesd at echeque.com
Thu Oct 3 03:14:17 EDT 2013
On 2013-10-03 00:46, John Kelsey wrote:
> a. Most attacks come from protocol or mode failures, not so much crypto primitive failures. That is, there's a reaction attack on the way CBC encryption and message padding play with your application, and it doesn't matter whether you're using AES or FEAL-8 for your block cipher.
The repeated failures of wifi are more crypto primitive failure, though
underlying crypto primitives were abused in ways that exposed subtle
weaknesses.
More information about the cryptography
mailing list