Dual EC, removed from OpenSSL for one glorious week, is coming back in the next OpenSSL-FIPS.
-
-
Replying to @matthew_d_green
@matthew_d_green what? But I thought they finally actually unfipped it??1 reply 1 retweet 0 likes -
Replying to @0xabad1dea
@0xabad1dea Well you see, it took so long to approve the un-DualECed version that the _next_ version was submitted with it still in.6 replies 9 retweets 2 likes -
Replying to @matthew_d_green
.
@matthew_d_green@0xabad1dea The OpenSSL team should make a clear statement and refuse to ship the DualEC code, FIPS or not.1 reply 1 retweet 0 likes -
Replying to @Dymaxion
@Dymaxion@0xabad1dea Well it doesn't work and it is disabled in outside code.1 reply 0 retweets 0 likes -
Replying to @matthew_d_green
@matthew_d_green@0xabad1dea Sure. The point is political, not technical.1 reply 0 retweets 0 likes -
Replying to @Dymaxion
@Dymaxion@0xabad1dea So I'm not convinced that political protests against CMVP work.1 reply 0 retweets 0 likes -
-
Replying to @Dymaxion
@Dymaxion@0xabad1dea I think the general view is that we can have FIPS-certified OSS crypto, or we can have closed-source CISCO crypto.3 replies 4 retweets 3 likes
@matthew_d_green the MD5-based stream cipher Cisco designed for TACACS+ is pretty dope
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.