[Cryptography] On the Impending Crypto Monoculture
Ray Dillinger
bear at sonic.net
Thu Mar 24 17:45:38 EDT 2016
On 03/24/2016 11:36 AM, Stephen Farrell wrote:
>
> On 24/03/16 12:41, Peter Gutmann wrote:
>> So the (pending) Bernstein monoculture isn't necessarily a vote for Dan, it's
>> more a vote against everything else.
>
> I agree with a lot of your analysis but not your title.
>
> Monoculture is wrong. I really don't see AES-GCM going away while
> there's h/w support. And nor will RSA until a lot of CAs have made
> a lot of changes, or we figure out how to do better than X.509 in
> the real world.
Monoculture is wrong, but it's less wrong than overcomplicated
and brittle. Overcomplicated and brittle has been the *only*
thing that non-monoculture solutions have shown themselves
capable of producing so far, so this is a vote of no confidence
in design by committee until the people on committees learn
how important it is to design simple and solid.
Bear
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: OpenPGP digital signature
URL: <http://www.metzdowd.com/pipermail/cryptography/attachments/20160324/eaefadfa/attachment.sig>
More information about the cryptography
mailing list