[Cryptography] New Encryption Standard of the Russian Federation GOST Grasshopper

Bill Frantz frantz at pwpconsult.com
Fri Jan 2 17:40:42 EST 2015

On 1/2/15 at 10:39 AM, iang at iang.org (ianG) wrote:

>It has however some agreed drawbacks, one of which is its 350 
>or so (opinions differ) suites or combos for ciphers.  Some 
>people defend that, others say it is too many but choice is important.

The post I saw on this question in the TLS working group is that 
TLS should mandate two algorithms for every crypto class (hash, 
symmetric cypher, etc.) Then if any single algorithm is 
compromised, a parameter change eliminating it will allow 
continued secure communication. Since connector proposes and 
connectee choses, fixing either would work.

YMMV - Bill

Bill Frantz        | Truth and love must prevail  | Periwinkle
(408)356-8506      | over lies and hate.          | 16345 
Englewood Ave
www.pwpconsult.com |               - Vaclav Havel | Los Gatos, 
CA 95032

More information about the cryptography mailing list