On 09/12/2014 10:02 PM, Thorsten Glaser wrote:
tl;dr: We probably should simplify the code (...)
Something I really want is a sponge construct, like Keccak, but
one where you can constantly write to and read from.
Spongy rc4 by Rivest himself at
people.csail.mit.edu/rivest/pubs.html#RS14 - slides at
http://crypto.2014.rump.cr.yp.to/3de41b60e32a494c8f0fc9c21c67063a.pdf
The author says it's stronger than RC4, so (even if it hasn't been
significantly analyzed yet) it's more than good enough for mksh since
$RANDOM will never protect sensitive data; it also looks a lot simpler
than keckak and doesn't force you to look at chacha20 if you really hate
it :)
(...)
bye,
//mirabilos
See you
