On Wed, Apr 13, 2005 at 10:06:47PM +0100, Ian G wrote:
Is the draft 12 the current working text? I noticed it
expires in another month.
Did we resolve the question of whether to make changes
to the MUST / SHOULD algorithms?
I'm all in favour of saying AES-128 is now the MUST and
triple DES becomes the SHOULD. In practice, most
implementations would be there already as they will have
done both (Cryptix Java is, and so is Perl's Crypt::OpenPGP).
I don't have a very strong feeling one way or another on making
AES-128 a MUST. However, I have a very strong feeling against
changing the status of 3DES.
There are too many years and too many implementations where 3DES is
the algorithm of last resort, and changing 3DES to a SHOULD
necessitates a different algorithm of last resort. We cannot change
that overnight.
By all means, add some new MUSTs to start the algorithm changing
process, but 3DES needs to stay as MUST as well for a good long time.
I recommend not making any change in default algorithms for 2440bis.
If and when we take up v5 keys, we can easily set the cipher of last
resort for v5 keys to something other than 3DES.
David