[Pkg-gnutls-maint] Bug#476441: libgnutls26: chooses AES128 over AES256 (again)
Simon Josefsson
simon at josefsson.org
Fri May 16 08:41:20 UTC 2008
tags 476441 upstream wontfix
thanks
Given the discussion so far at:
http://thread.gmane.org/gmane.comp.encryption.gpg.gnutls.devel/2792
I'm inclined to close this as a wontfix report.
You may want to review our documentation on key sizes:
http://www.gnu.org/software/gnutls/manual/html_node/Selecting-cryptographic-key-sizes.html
That table is based on research in:
http://citeseer.ist.psu.edu/lenstra99selecting.html
We are open for discussion if you can provide better justification why
changing to AES-256 is warranted.
Note that changing the default for all programs is different from
_allowing_ AES-256 to be used in each program. I believe you should be
able to use AES-256 with all programs that use GnuTLS. If a program
using GnuTLS doesn't allow you to use AES-256, please file a bug on that
program.
/Simon
More information about the Pkg-gnutls-maint
mailing list