I think TripleDES needs to go from a MUST to a SHOULD algorithm.
I don't see much point in dragging 3DES along with us into the future. It's
done excellent service for 40 years, but the time has come to put it out to
pasture.
I think AES128 needs to be a MUST algorithm ... AES256 needs to
be a SHOULD algorithm.
What's the rationale here? Why should the shorter keylength be required and
the longer optional?
_______________________________________________
openpgp mailing list
openpgp(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/openpgp