On 2/09/2015 12:43 pm, Alan Orth wrote:
I'm not sure if you folks saw this, but a few weeks ago the NSA updated
their Suite B recommendations. They now recommend AES-256, curve P-384,
and SHA-384. Here's a before and after of their "Suite B" cryptography
recommendations:
Before (web archive):
https://web.archive.org/web/20150403110658/https://www.nsa.gov/ia/programs/suiteb_cryptography/index.shtml
<https://web.archive.org/web/20150403110658/https://www.nsa.gov/ia/programs/suiteb_cryptography/index.shtml>
After:
https://www.nsa.gov/ia/programs/suiteb_cryptography/index.shtml
<https://www.nsa.gov/ia/programs/suiteb_cryptography/index.shtml>
Now you need to decide to yourself if this is worth updating your
infrastructure configuration. :)
No it's not. NSA guidelines aren't for us. Longer controversial
answers on request...
(But, it's definitely something we watch, with lots of interest.)
iang
_______________________________________________
Ach mailing list
[email protected]
http://lists.cert.at/cgi-bin/mailman/listinfo/ach
