[Cryptography] "Is FIPS 140-2 Actively harmful to software?"
James A. Donald
jamesd at echeque.com
Mon Jun 23 05:27:41 EDT 2014
On 2014-06-21 02:34, ianG wrote:
> * name. And, while we're on the meme of signals, if there is one
> reliable signal in a world of silver bullets, it is: rep. I trust
> certain guys to get it right. I trust James to get a good payment
> system, I trust Jon to do a good comms system, and I'll back PHB on the
> mail thing, altho I disagree on the premise. DJB & Tanja impress on the
> ciphersuite. Zooko on file systems. Etc.
>
> Those guys will secure the herd. If any of them start talking FIPS or
> CC or ISO or ETSI ... then my faith goes down. And the herd better
> watch out.
Some individuals are consistently trustworthy and competent. Very few
organizations are.
More information about the cryptography
mailing list