* Aaron Zauner <[email protected]> [141119 20:34]: > I'm far from an expert on GCM, but as far as I know from feedback > from Google engineers there are problems with GCM on mobile devices, > which is why they (and others) are pushing to standardize > ChaCha/Poly1305 in TLS. If a more qualified person can comment and > clarify on that matter I think that'd be useful for the discussion. > > [...] > > As to the whole "quantum threat" point made earlier: This has been > blown out of proportion by the media. We're far away from a usable > quantum computing architecture and even more so for one that might > pose a threat to cryptographic primitives. Then again Post Quantum > algorithms are the best direction we should be looking into not > building upon existing algorithms. AES128 should suffice for the > timeframe of this WG and the current documents that we should - > really - get out of the door soon.
Also; isn't this an issue CFRG is tasked to handle instead of WGs themselves? We might ask for advice if we cannot find consensus. Aaron
signature.asc
Description: Digital signature
_______________________________________________ Uta mailing list [email protected] https://www.ietf.org/mailman/listinfo/uta
