[liberationtech] [cryptography] New Anonymity Network for Short Messages
Eugen Leitl
eugen at leitl.org
Wed Jun 12 03:16:52 PDT 2013
----- Forwarded message from Peter Gutmann <pgut001 at cs.auckland.ac.nz> -----
Date: Wed, 12 Jun 2013 15:09:15 +1200
From: Peter Gutmann <pgut001 at cs.auckland.ac.nz>
To: cryptography at randombit.net, eugen at leitl.org
Subject: Re: [cryptography] [liberationtech] New Anonymity Network for Short Messages
Eugen Leitl <eugen at leitl.org> either writes or quotes:
>----- Forwarded message from Sean Cassidy <sean.a.cassidy at gmail.com> -----
>> - Any specific reason you picked CTR?
>
>CTR is widely recommended. Cryptography Engineering specifically recommends
>it.
Who recommends it (apart from CE?). I've seen it warned about in a number of
places, and I recommend (strongly) against it in my (still in-progress) book.
It's the most dangerous encryption mode since RC4.
More specifically, it's RC4 all over again. There's a reason why that was
dropped almost everywhere, for example the SDL explicitly bans it, and there's
even a Visual Studio tool that scans your code and complains about its use.
Peter.
----- End forwarded message -----
--
Eugen* Leitl <a href="http://leitl.org">leitl</a> http://leitl.org
______________________________________________________________
ICBM: 48.07100, 11.36820 http://ativel.com http://postbiota.org
AC894EC5: 38A5 5F46 A4FF 59B8 336B 47EE F46E 3489 AC89 4EC5
More information about the liberationtech
mailing list