[Pkg-swan-devel] Bug#803787: Bug#803787: [strongswan] Enable post-quantum algorithms

Yves-Alexis Perez corsac at debian.org
Tue Nov 3 16:01:00 UTC 2015

On mar., 2015-11-03 at 16:56 +0100, Nicolas Braud-Santoni wrote:
> Post-quantum key-exchange, as provided by NTRU, is needed by users who want to provide
> forward-secrecy in the mid/long-term, given that quantum computers might become a legitimate
> threat within the next 5 or 10 years (and we are aware that some people do collect and save
> traffic for later cryptanalysis).

I'm not sure I want to debate about the security of DH, ECDH and other key-
exchange mechanisms (and especially for passive attackers), but I'm not really
a huge fan of enabling more code to an already quite complex stack.

In any case, if we decide to enable this, it'll be in the extra plugins binary


-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 473 bytes
Desc: This is a digitally signed message part
URL: <http://lists.alioth.debian.org/pipermail/pkg-swan-devel/attachments/20151103/b35d8e88/attachment.sig>

More information about the Pkg-swan-devel mailing list