[Top] [All Lists]

Re: [openpgp] Intent to deprecate: Insecure primitives

2015-03-16 17:48:54

On Mar 16, 2015, at 3:24 PM, Ryan Carboni <ryacko(_at_)gmail(_dot_)com> wrote:

I suggest Threefish. It is (practically) immune to the risk of collisions 
revealing plaintext in CFB mode, and is slightly more secure. It's probably 
best to use the version of Threefish before they increased the number of 
rounds to deal with collisions.

As a Threefish co-author, thank you for your vote of confidence.

We never increased the number of rounds. We tweaked constants, but that's all.

Threefish is a wide-block, tweakable block cipher and would need a small bit of 
description of how to use it; it's not a drop-in replacement for something like 

But I'd be happy to do that, myself, and could make suggestions in less than a 


openpgp mailing list