Firefox: 256-bit encryption gone for F20?
Robert Moskowitz
rgm at htt-consult.com
Fri May 23 13:18:42 UTC 2014
Don't bother with AES-256 unless you are using RSA 15360 or ECDSA p521.
Well MAYBE you can get away with RSA 7680 or ECDSA p384.
Please see: http://www.nsa.gov/business/programs/elliptic_curve.shtml
And the general crypto community agrees with this analysis. Note I am
NOT a cyrptographer, I just work closely with them as I am a
crypto-plumber. I get these algorithms working in protocols (like my
HIP protocol).
Oh, our product protects you with AES-256! Well what mode of operation
are you using for that? Um, that is proprietary information. Huh?
What is proprietary about modes of operation, well what asymmetric
algorithm and keysize are you using? RSA 2048 for greater strength than
those that use RSA 1024!
Some implementors just don't have a crypto clue.
On 05/22/2014 11:43 PM, Ranjan Maitra wrote:
> Hi,
>
> I tried the following this morning on Firefox (updated from F20 repos):
>
> https://www.fortify.net/sslcheck.html
>
> and came up with 128-bit encryption. I could swear that at least the
> last time I checked it, it used to report 256-bit encryption. I wonder
> if/why this no longer holds.
>
> I am using firefox-29.0.1-1.fc20.x86_64.
>
> Many thanks,
> Ranjan
>
> ____________________________________________________________
> FREE 3D MARINE AQUARIUM SCREENSAVER - Watch dolphins, sharks & orcas on your desktop!
> Check it out at http://www.inbox.com/marineaquarium
>
>
More information about the users
mailing list