On Jul 6, 2014, at 3:09 PM, Yaron Sheffer <[email protected]> wrote:
>> bullet 5 Implementations SHOULD prefer cipher suites with greater than >> 128 bits of effective key length > > No, this contradicts our recommendation, and IMO is too strict for the > current state of the industry. In other words, people are perfectly happy > with AES-128 today and it is NOT our goal to push to AES-256. For a BCP, I don’t see how a SHOULD prefer >128 is too strict. This isn’t a MUST, and certainly isn’t a requirement that only the 256 bit variants are used. Personally, if someone asks me what the best practice today is - I wouldn’t hesitate to say that 256 should be prioritized over 128, and 128 prioritized over 112. There may be environments where this isn’t practical - and that’s why this isn’t a MUST, but it is what SHOULD be done. -- Adam Caudill [email protected] http://adamcaudill.com/ _______________________________________________ Uta mailing list [email protected] https://www.ietf.org/mailman/listinfo/uta
