[Ach] KexAlgorithms: curve25519-sha256 at libssh.org
Aaron Zauner
azet at azet.org
Tue Jan 7 00:56:00 CET 2014
James Cloos wrote:
>>>> curve25519-sha256 at libssh.org
>
> It is in the openbsd and portable-openssh cvs repos.
>
> Expect it in the next release.
>
> It works well.
>
> Cvs also has the chacha20-poly1305 at openssh.com cipher and
> ssh-ed25519-cert-v01 at openssh.com & ssh-ed25519 key pairs.
>
> curve25519-sha256 at libssh.org depends on HAVE_EVP_SHA256
> and is the highest pref kex when available.
>
> The ed25519 keys are second in pref to ECDSA (but the ECDSA keys
> are only available if OPENSSL_HAS_ECC; ed25519 is not so limited).
>
> chacha20-poly1305 at openssh.com is lower in the default prefs.
Thanks for clearing that up - I'll make sure to include it in our paper
as soon the mentioned algorithms are in a OpenSSH release. I've read the
mails regarding those ciphers on the openssh-dev ML and am excited that
OpenSSH includes them.
Aaron
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 801 bytes
Desc: OpenPGP digital signature
URL: <http://lists.cert.at/pipermail/ach/attachments/20140107/f6a89c1f/attachment.sig>
More information about the Ach
mailing list