[prev in list] [next in list] [prev in thread] [next in thread]
List: gnupg-users
Subject: Re: Security doubts on 3DES default
From: Werner Koch <wk () gnupg ! org>
Date: 2017-03-16 19:37:32
Message-ID: 8760j9ui6b.fsf () wheatstone ! g10code ! de
[Download RAW message or body]
[Attachment #2 (multipart/signed)]
On Thu, 16 Mar 2017 15:55, peter@digitalbrains.com said:
> Perhaps we should either retire ciphers with a 64-bit block length or
> make OpenPGP mandatorily rekey after a few gigabytes of data, so it's no
> longer up to the user to be prudent with large amounts of data.
Those who have large amounts of data to encrypt will anyway use a fast
cipher and this means AES. Thus the 64 bit block length is in practice
only a theoretical problem. A more practical problem is how to protect
against arbitrary I/O or storage errors. Thus in the end you will store
the data anyway in chunks.
Shalom-Salam,
Werner
--
Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz.
[Attachment #5 (application/pgp-signature)]
_______________________________________________
Gnupg-users mailing list
Gnupg-users@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-users
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic