AES128 or AES256 by default?

gnutls-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

AES128 or AES256 by default?

From:	Simon Josefsson
Subject:	AES128 or AES256 by default?
Date:	Thu, 15 May 2008 11:34:50 +0200
User-agent:	Gnus/5.110009 (No Gnus v0.9) Emacs/22.2 (gnu/linux)

There is a debian bug:

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=476441

Which asks that we make AES-256 the default preferred cipher.  Right now
AES-128 is the default preferred cipher.  Of course, today AES-256 is
supported as well (it is the second preferred default cipher).

What do people think here?

I don't care strongly, but I find the arguments for AES-256 rather weak.
According to RFC 3766, to match a 256 bit symmetric key size, you need a
~15kb large RSA key or a ~500b large DSA key.  People don't use that
kind of public key sizes today as far as I know, as they become very
big.  The few who do should be able to tweak the GnuTLS cipher
preference accordingly.

/Simon

[Prev in Thread]

Current Thread

[Next in Thread]

AES128 or AES256 by default?, Simon Josefsson <=
- Re: AES128 or AES256 by default?, Paul Querna, 2008/05/15
- Re: AES128 or AES256 by default?, Nikos Mavrogiannopoulos, 2008/05/16

Prev by Date: Re: [Modules] [mod_gnutls 0.4.3 / 0.5.1] GnuTLS internal error with Firefox 3
Next by Date: Re: [Modules] [mod_gnutls 0.4.3 / 0.5.1] GnuTLS internal error with Firefox 3
Previous by thread: Re: [Modules] [mod_gnutls 0.4.3 / 0.5.1] GnuTLS internal error with Firefox 3
Next by thread: Re: AES128 or AES256 by default?
Index(es):
- Date
- Thread