[Cryptography] recommending ChaCha20 instead of RC4 (RC4 again)

dan at geer.org dan at geer.org
Thu Mar 13 09:19:05 EDT 2014

Peter, Jerry, et al., Good points about how performance either does,
or inevitably will, matter more as time goes on, raw speedups are
not so easy to buy, and implementations are ever more deeply buried
in places you can't get to again.

Let's stipulate that you are entirely correct.  How do we react if
we are to learn the lessons of history, etc.?  Can a lack of
speedups-to-come be itself relied upon enough to factor that into
design decisions yet to be made, such as to put aside any need to
design in resistance to a sped-up future or to demand specialized
chipsets for devices that will have no remote management interface?
I am asking the "You are right, but so what?" question (with respect).


More information about the cryptography mailing list