On Tue, 17 Jan 2017 13:03:35 +0100 "Andreas Walz" <[email protected]> wrote:
> I know there is some comprehensible reluctance against bloating the > TLS ecosystem with even more cipher suites, but still ... have there > been considerations / discussions on adding ChaCha20+Poly1305 cipher > suites with truncted authentication tags for (D)TLS? The usual question to answer is: why? The general reluctance to add new ciphersuites "just because they are there" is imho very reasonable and in the past TLS got bloated in complexity far too much because of that. If you want a new ciphersuite you should have some good arguments why they offer something that the current ones don't. Ideally these should be specific. (Aka "Someone could need that for hypothetical situation XYZ" is not very compelling. "I am developing a widely used product where this would immensely help for Reasons xyz" is better.) -- Hanno Böck https://hboeck.de/ mail/jabber: [email protected] GPG: FE73757FA60E4E21B937579FA5880072BBB51E42 _______________________________________________ TLS mailing list [email protected] https://www.ietf.org/mailman/listinfo/tls
