[Cryptography] Do you think RC4 will become insecure for 2^16 encryptions of the same plaintext or less?

Tony Arcieri bascule at gmail.com
Tue Oct 7 23:45:08 EDT 2014

Is there some legacy reason you really need to support RC4 in this use
case? If not, why not use a modern cipher like ChaCha20 instead?

RC4 is clearly not a good cipher, especially compared to modern
alternatives. Do we really need to take a straw poll of how horribly it
will be broken in the future?

Tony Arcieri
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.metzdowd.com/pipermail/cryptography/attachments/20141007/be05c817/attachment.html>

More information about the cryptography mailing list