[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: new second mandatory IPsec cipher



In message <378C92C6.2CC164D7@thawte.com>, Mark Shuttleworth writes:
>This is a cryptographically signed message in MIME format.
>
>--------------ms59E61EBA81B8C82D4D40EC98
>Content-Type: text/plain; charset=us-ascii
>Content-Transfer-Encoding: 7bit
>
>Hi all
>
>Is AES at the point where the "data structure" can be defined? In other
>words, is it possible at this stage to know what data structures you'll
>need to be able to represent an AES key or session? If so, why not
>simply shoot for that. Nobody loves the NSA, but most folk respect 'em
>;-). I suspect AES will become as widely used as DES is today.
>

It's quite certain that we'll want to mandate AES once it's blessed.  It
isn't, and won't be for a while yet.  What we do know is that it will use
16-byte blocks -- and that change is likely to upset some implementations;
vendors may want to start testing that now -- and variable-length keys
starting at 128 bits.



Follow-Ups: