[Cryptography] Amazon releases open source cryptographic module
David Wong
david at matasano.com
Mon Jul 6 15:12:06 EDT 2015
> On Jul 6, 2015, at 1:20 PM, Ryan Carboni <ryacko at gmail.com> wrote:
>
>
> I understand that cryptography is extremely subtle. Actually most programming is pretty subtle.
> This is why I'm saying that the length of the code or it's readability is not a factor.
>
> I'm saying that it's possible for ten lines of code to be backdoored.
I don’t think it contradicts the fact that less lines of code = easier to audit (also the clarity of the code helps, I glanced at the s2n source code and it looks pretty nice to me)
David
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.metzdowd.com/pipermail/cryptography/attachments/20150706/0e2dea13/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 496 bytes
Desc: Message signed with OpenPGP using GPGMail
URL: <http://www.metzdowd.com/pipermail/cryptography/attachments/20150706/0e2dea13/attachment.sig>
More information about the cryptography
mailing list