[cryptography] Fwd: PHC winner release

2015-11-02 Thread stargrave 
- Forwarded message from Jean-Philippe Aumasson -

Date: Mon, 02 Nov 2015 18:48:51 +
From: Jean-Philippe Aumasson
To: "discussi...@password-hashing.net" 
Subject: [PHC] PHC winner release
List-ID: 

I'm happy to release the Password Hashing Competition winner, Argon2: specs
and public-domain code athttps://password-hashing.net/#argon2

Please report any issue with the Argon2 code (as GitHub issues preferably),
and let us know if you write bindings for another language

A crypt(3)-like encoding format is specified in
https://github.com/P-H-C/phc-string-format/, and will be integrated in the
ref code.

Guess this officially closes PHC, so I'd like to thank everyone: designers,
panel members, mailing list posters, testers. Hope we'll have done
something useful!

- End forwarded message -
___
cryptography mailing list
cryptography@randombit.net
http://lists.randombit.net/mailman/listinfo/cryptography

[cryptography] GoVPN -- reviewable secure state-off-art crypto free software VPN daemon

2015-05-03 Thread stargrave 
GoVPN project should be interesting in this maillist: 
http://www.cypherpunks.ru/govpn/
Aimed to be reviewable, secure, DPI-resistant, state-off-art crypto
free software VPN daemon.

It is written on Go, so has small source code size. Uses fast
Password Authenticated Key Exchange (PAKE) based on Diffie-Hellman (DH)
Augmented Encrypted Key Exchange (A-EKE) for mutual strong
zero-knowledge peers authentication, using Curve25519 and Ed25519. Data
transport is encrypted (Salsa20), authenticated (Poly1305), hides
message's length and timestamp by appending noise and generating
constant packet rate dummy traffic. Perfect Forward Secrecy (PFS)
property, resistance to dictionary attacks (PBKDF2 and server-side
verifiers), replay attacks (nonces). Built-in heartbeating,
rehandshaking. All traffic is indistinguishable from the noise.

Feedback is appreciated!

-- 
Happy hacking, Sergey Matveev
___
cryptography mailing list
cryptography@randombit.net
http://lists.randombit.net/mailman/listinfo/cryptography

Re: [cryptography] Can we move to a forum, please?

2013-12-25 Thread stargrave 
*** Nicholas Bohm nb...@ernest.net [2013-12-25 18:40]:
I'm curious, is Aaron's response representative of the entire list's, or are 
the
re folks out there lurking who would actually appreciate a forum?
I am just an ordinary reader here, but personally I am strongly against
forums. I won't read them anyway, I do not believe people are willing to
replace their reliable configured comofortable to work with personal
email software with someone's Web-based thought of better user
interface. Personally configured email client is always will be more
convenient way to work with, ability to work offline, search list
archives offline, robustness if list mailserver is down, not resource
and network traffic (relatively) wastefull client and server software.
I assume NNTP Usenet-like services is better choice, but modern
maillists are very good from most point of views.

-- 
Happy hacking, Sergey Matveev
___
cryptography mailing list
cryptography@randombit.net
http://lists.randombit.net/mailman/listinfo/cryptography