On Tue, 8 Aug 2000, Stephen Blackheath wrote: > There's a cryptanalysis of the Rijndael algorithm at > http://www.counterpane.com/rijndael.html. I haven't got into detail, but > it looks a little worrying. > > This brings me to... The issue of what ciphers to use. Has anyone given > thought to the idea of allowing nodes to negotiate what ciphers they want > in the same way as TLS (a.k.a SSL) does?
In general, negotiation adds an order of magnitude of difficulty to working on the protocol, much more than actually doing an upgrade everywhere in case of a disaster would be. The really conservative cryptographic choices right now are sha-1 for hashing, and 3des for encryption. Once the American Encryption Standard (AES) has been selected (which rijndael is one of the candidates for) then it will be a pretty good idea to go with that. -Bram Cohen _______________________________________________ Freenet-dev mailing list Freenet-dev at lists.sourceforge.net http://lists.sourceforge.net/mailman/listinfo/freenet-dev
