[Ach] One request on committing to the repository

ianG iang at iang.org
Tue Nov 26 15:46:59 CET 2013

On 26/11/13 02:40 AM, Philipp Gühring wrote:

> While we are at changing the ciphersuites: What does everyone think
> about removing the !AES128 ?
> Is anyone really afraid of AES128 being breakable, and AES256 still
> being secure?

Er, no, it's the other way around.  AES128 has no good attacks on it, 
and it is strong for almost all purposes.  AES256 has a number of 
notable attacks on it, and it has no practical benefit over AES128 for 
most work that we would be involved in.

> ... I vote
> for keeping both AES-128 and AES-256 in the ciphersuites, so that we
> have room for maneuver in the future.



More information about the Ach mailing list