[Cryptography] a question on consensus over algorithmic agility
Jon Callas
jon at callas.org
Thu Jun 26 20:47:31 EDT 2014
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Well, Ian, in my opinion it works like this:
It's completely obvious that the most correct thing to do is to have only one set of algorithms.
And then when you decide that it's a really good idea to replace one of the algorithms, then it's completely obvious that you need another algorithm and agility is called for.
There's a very easy way to get around an apparent need for agility, and it's a simple process: Select an algorithm set that is going to give you adequate security throughout the total life of your protocol and then forbid people from using it for things you didn't anticipate or for longer than the life of your protocol.
Jon
-----BEGIN PGP SIGNATURE-----
Version: PGP Universal 3.2.0 (Build 1672)
Charset: us-ascii
wj8DBQFTrL8ksTedWZOD3gYRAmIuAJ9jxfTVmrOThfG6U2nBZO5X7aAZrACgjlyq
sjGUEgOyc8lMFCyQez9xfZk=
=CQb7
-----END PGP SIGNATURE-----
More information about the cryptography
mailing list