[
https://issues.apache.org/jira/browse/SSHD-946?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16950988#comment-16950988
]
Cornelis Hoeflake commented on SSHD-946:
Hi, Sorry for my late reply! Thanks for adding the OpenSSH link. Personally I'm
not a security expert and could not find any useful documentation.
For TLS there is RFC-7366, but I don't know if that helps and if there are any
similarities between the specs. Please see:
[https://tools.ietf.org/html/rfc7366].
> Supporting 'encrypt-then-MAC' mode
> --
>
> Key: SSHD-946
> URL: https://issues.apache.org/jira/browse/SSHD-946
> Project: MINA SSHD
> Issue Type: New Feature
>Reporter: Cornelis Hoeflake
>Assignee: Lyor Goldstein
>Priority: Major
>
> Hi, the current implementation uses by default '**encrypt-*and*-MAC' mode. Is
> it possible to change this (or at least made it possible) to
> 'encrypt-*then*-MAC'?
> Please see also:
> [https://crypto.stackexchange.com/questions/202/should-we-mac-then-encrypt-or-encrypt-then-mac]
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
-
To unsubscribe, e-mail: dev-unsubscr...@mina.apache.org
For additional commands, e-mail: dev-h...@mina.apache.org
