Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Cryptography - suggested modification of 6.5.2 (AES modes) #2496

Closed
randomstuff opened this issue Jan 2, 2025 · 2 comments
Closed

Cryptography - suggested modification of 6.5.2 (AES modes) #2496

randomstuff opened this issue Jan 2, 2025 · 2 comments
Assignees
@danielcuthbert
Labels
1) Discussion ongoing Issue is opened and assigned but no clear proposal yet Bart Preneel Issues raised from a crypto review by Bart Preneel (received via Aram H) V6 _5.0 - prep This needs to be addressed to prepare 5.0

Comments

@randomstuff
Copy link
Contributor

randomstuff commented Jan 2, 2025
edited
Loading

Suggested change from Bart Preneel.

Current:

6.5.2 [ADDED, SPLIT FROM 6.2.5, LEVEL L2 > L1] Verify that insecure ciphers, including Triple-DES and Blowfish, are not used but secure ciphers and modes such as AES with GCM are.

Proposed:

6.5.2 [ADDED, SPLIT FROM 6.2.5, LEVEL L2 > L1] Verify that insecure ciphers, including Triple-DES and Blowfish, are not used but secure ciphers and modes such as AES-GCM, AES-CCM, AES-OCB are.
@randomstuff
Copy link
Contributor Author

OK for me.

@elarlang elarlang added the V6 label Jan 3, 2025
@tghosth tghosth added 1) Discussion ongoing Issue is opened and assigned but no clear proposal yet _5.0 - prep This needs to be addressed to prepare 5.0 labels Jan 5, 2025
@tghosth
Copy link
Collaborator

tghosth commented Jan 5, 2025

We provide other examples in the appendix so I don't think we need more here.
Also, sounds like OCB has patent issues which I am guessing is why the appendix does not mention it: https://crypto.stackexchange.com/a/5643

@tghosth tghosth closed this as completed Jan 5, 2025
@tghosth tghosth closed this as not planned Won't fix, can't repro, duplicate, stale Jan 5, 2025
@tghosth tghosth added the Bart Preneel Issues raised from a crypto review by Bart Preneel (received via Aram H) label Jan 5, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@danielcuthbert danielcuthbert

Labels
1) Discussion ongoing Issue is opened and assigned but no clear proposal yet Bart Preneel Issues raised from a crypto review by Bart Preneel (received via Aram H) V6 _5.0 - prep This needs to be addressed to prepare 5.0
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@randomstuff @danielcuthbert @tghosth @elarlang