[Cryptography] HSM's
John Kelsey
crypto.jmk at gmail.com
Mon Jan 20 12:24:17 EST 2014
> On Jan 19, 2014, at 2:49 PM, Thierry Moreau <thierry.moreau at connotech.com> wrote:
>
...
> A final note: Anyone aware of an HSM vendor that did not follow NIST advice in their engineering? Maybe the HSM concept is just dead after the Snowden revelations.
I'm sure you can find some HSM out there that uses single-DES or a homegrown cipher instead of AES, MD5 instead of SHA1 or SHA2, 768-bit RSA keys, etc. So, yeah, I'm sure you can find someone who will sell you an HSM that ignores NIST recommendations.
> - Thierry Moreau
--John
More information about the cryptography
mailing list