On 02/12/2013 12:04 AM, Peter Gutmann wrote: > The problem with the cipher-suite explosion is that people want to throw in > vast numbers of pointless vanity suites and algorithms that no-one will ever > use
On balance I think the ciphersuite approach is slightly better at being a slight counter to inevitable feature/cipher creep. It does at least cause people to pause when they are about to ask for another 96 ciphersuites as happened with certicom. I also agree that only a very very few of the 320 or so TLS ciphersuites are useful. The rest are just a PITA as far as I can see. (Yes, 320. Sigh. [1]) S. [1] http://www.iana.org/assignments/tls-parameters/tls-parameters.xml#tls-parameters-3 _______________________________________________ cryptography mailing list cryptography@randombit.net http://lists.randombit.net/mailman/listinfo/cryptography
