[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]
Re: [tor-dev] Even more notes on relay-crypto constructions
>On Thu, 11 Oct 2012 19:17:22 +0000
>unknown <unknown@xxxxxxxxx> wrote:
> On Tue, 9 Oct 2012 00:28:38 -0400
> Nick Mathewson <nickm@xxxxxxxxxxxxxx> wrote:
>
> > So to be concrete, let me suggest a few modes of operation. I believe
> > I'm competent to implement these:
>
> I think (IMHO) Keccak makes many (most?) symmetric encryption modes
> obsolete in the near future.
>
What I wrote about Keccak one year ago:
https://lists.torproject.org/pipermail/tor-dev/2011-November/003020.html
Now Keccak is SHA-3. I hope Keccak will soon replace everything:
from old messy code in the entropy accumulator and distillator
in /dev/random to AES-CTR-HMAC encryption in SSL.
From complex RSA-OAEP padding mode in signatures to exotic tweaked
block-ciphers.
Keccak is simpler to implement without mistakes and easier to design
a protocols with solid security proofs. It's universal by
generic inner structure properties without need any special
additional modules or switches.
_______________________________________________
tor-dev mailing list
tor-dev@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev