On Thu, 13 Jul 2017 00:38, sandals(_at_)crustytoothpaste(_dot_)net said:
3DES is still the must-implement encryption algorithm. AES128 seems
like the logical choice here, since it's already MTI because of ECDH.
I am fine with that choice.
There is also the suggestion to make AES-nnn mandatory and 3DES optional
when used with v5 keys. I would be in favor of that; I don't care on
whether this is AES-128 or AES-256.
I suggest that we make the AEAD mode, whatever we pick, mandatory as
well.
We can only do that when used with v5 keys. We can't do that in
general.
Salam-Shalom,
Werner
--
Die Gedanken sind frei. Ausnahmen regelt ein Bundesgesetz.
pgpqROl5fE8uz.pgp
Description: PGP signature
_______________________________________________
openpgp mailing list
openpgp(_at_)ietf(_dot_)org
https://www.ietf.org/mailman/listinfo/openpgp