[Cryptography] What TLS ciphersuites are still OK?

james hughes hughejp at mac.com
Tue Sep 10 10:58:06 EDT 2013

On Sep 9, 2013, at 9:10 PM, Tony Arcieri <bascule at gmail.com> wrote:

> On Mon, Sep 9, 2013 at 9:29 AM, Ben Laurie <ben at links.org> wrote:
>> And the brief summary is: there's only one ciphersuite left that's good, and unfortunately its only available in TLS 1.2:
> A lot of people don't like GCM either ;) 

Yes, GCM does have implementation sensitivities particularly around the IV generation. That being said, the algorithm is better than most and the implementation sensitivity obvious (don't ever reuse an IV).
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.metzdowd.com/pipermail/cryptography/attachments/20130910/da95a3d8/attachment.html>

More information about the cryptography mailing list