Thor Lancelot Simon <[email protected]> writes: >For at least 15 years there's been general grumbling that the MD5 based >stream cipher used for confidentiality in RADIUS looks like snake oil.
It's not snake oil, the MD5-based masking was created because it was exportable. Proper crypto like DES wouldn't have been. Could you do better with modern crypto? Sure. But is it really the weakest part of RADIUS? In other words if you switched to AES-GCM or whatever, would anyone notice? Peter. _______________________________________________ cryptography mailing list [email protected] http://lists.randombit.net/mailman/listinfo/cryptography
