On Sep 9, 2013, at 11:16 AM, Gervase Markham <g...@mozilla.org> wrote:
> On 09/08/13 03:30, Brian Smith wrote: >> Please see https://briansmith.org/browser-ciphersuites-01.html > > This proposal promotes ECC. > > http://www.theguardian.com/world/2013/sep/05/nsa-how-to-remain-secure-surveillance > > Schneier: "Prefer conventional discrete-log-based systems over > elliptic-curve systems; the latter have constants that the NSA > influences when they can." > > He elaborates in the comments: > > "I no longer trust the constants. I believe the NSA has manipulated them > through their relationships with industry." > > Does that affect your proposal? Wasn’t he talking about http://en.wikipedia.org/wiki/Dual_EC_DRBG#Controversy ? S. -- dev-tech-crypto mailing list dev-tech-crypto@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-tech-crypto