AES 256 can be reduced a lot, I think your 128 bit AES recommendation is
better
El mar 11, 2013 12:26 PM, "Yair Elharrar"
escribió:
> Ido,
> I believe your customer is simply looking for a statement that you're only
> using modern public algorithms, with key sizes above 128 bit, and not some
> pr
Ido,
I believe your customer is simply looking for a statement that you're only
using modern public algorithms, with key sizes above 128 bit, and not some
proprietary encryption.
Regarding the "life cycle process", you can refer the customer to ECRYPT's
yearly report on key sizes, http://www.ec
On Thu, Mar 07, 2013 at 10:56:53PM +0100, Andy Polyakov via RT wrote:
> > I can provide a staticly linked version of s_client with debug
> > symbols if you think that's useful. But I would still need
> > to know what to ask.
>
> I can't really think of anything specific to ask either. As suggeste
Find an unhappy employee and offer them a couple-hundred thousand Euro for
their password.
The question/requirement as stated is unanswerable, and certainly not by the
well-meaning volunteers who frequent this list.
/r$
--
Principal Security Engineer
Akamai Technology
Cambridge, MA
_
On 11 March 2013 11:09, Ido Regev wrote:
> Hi,
>
>
>
> I haven't found a reply to the specific question the customer is asking me.
>
> Any other direction will be greatly appreciated.
The problem is that the spec is rather vague - who knows what I might
invent as a custom build to break their par
Ido,
Perhaps you should hire Bruce Schneier or a similar expert. Or read his books,
which cover this topic in depth and are quite understandable to any
well-educated software engineer. Also, see his web site and blog for much
useful information.
My own personal take is that these require
Hi,
I haven't found a reply to the specific question the customer is asking me.
Any other direction will be greatly appreciated.
Ido
From: owner-openssl-...@openssl.org [mailto:owner-openssl-...@openssl.org] On
Behalf Of Jason Gerfen
Sent: Wednesday, March 06, 2013 4:29 PM
To: openssl-dev@opens
On Mon, Mar 04, 2013 at 08:08:58PM +0100, Andy Polyakov via RT wrote:
> Hi,
>
> As soon as user can confirm that
> http://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=5702e965d759dde8a098d8108660721ba2b93a7d
>
> does the trick, it goes to stable branches.
Yes, the user confirmed that t
Hi Tom,
Thanks for your reply. I did read the user guide and do understand that I
cannot use the library directly. This is shown in my explanation where I try to
change the compiler to use the script.
Thanks for all the other suggestions - I will definitively order the CD.
After I read your ema
