Don't bother with AES-256 unless you are using RSA 15360 or ECDSA p521.
Well MAYBE you can get away with RSA 7680 or ECDSA p384.
Please see: http://www.nsa.gov/business/programs/elliptic_curve.shtml
And the general crypto community agrees with this analysis. Note I am
NOT a cyrptographer, I just work closely with them as I am a
crypto-plumber. I get these algorithms working in protocols (like my
HIP protocol).
Oh, our product protects you with AES-256! Well what mode of operation
are you using for that? Um, that is proprietary information. Huh?
What is proprietary about modes of operation, well what asymmetric
algorithm and keysize are you using? RSA 2048 for greater strength than
those that use RSA 1024!
Some implementors just don't have a crypto clue.
On 05/22/2014 11:43 PM, Ranjan Maitra wrote:
Hi,
I tried the following this morning on Firefox (updated from F20 repos):
https://www.fortify.net/sslcheck.html
and came up with 128-bit encryption. I could swear that at least the
last time I checked it, it used to report 256-bit encryption. I wonder
if/why this no longer holds.
I am using firefox-29.0.1-1.fc20.x86_64.
Many thanks,
Ranjan
____________________________________________________________
FREE 3D MARINE AQUARIUM SCREENSAVER - Watch dolphins, sharks & orcas on your desktop!
Check it out at http://www.inbox.com/marineaquarium
--
users mailing list
users@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe or change subscription options:
https://admin.fedoraproject.org/mailman/listinfo/users
Fedora Code of Conduct: http://fedoraproject.org/code-of-conduct
Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Have a question? Ask away: http://ask.fedoraproject.org
