IETF-SSH archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

Re: updated transport & userauth drafts



> I agree with Bill:  The protocol is much more than CBC-encryption,
> and it's so easy to switch ciphers.  The group really should move
> on.

I too agree.  Ciphers are easy to add.
The core drafts clearly define how to
specify additional ciphers independantly,
for exactly this purpose.

In fact, I would say that if people feel
strongly, it would not be too early to
start a document describing the proposed
new ciphers.

Such a document would naturally proceed
independantly from the core drafts.

But, in the event that all the Real
Cryptographers (TM) all of a sudden
said "Oh my gosh!  This is horrible!
Don't use CBC for anything!" we would
have something we'd actually been working
on, and ironing out the wording, clarity,
etc.

And, indeed, it wouldn't be a bad idea to have
some ciphers specified that didn't use CBC,
even without this specific attack, on the
principle that we don't want all our eggs
in one basket.

- Joseph




Home | Main Index | Thread Index | Old Index