[4980] in cryptography@c2.net mail archive
Re: so why is IETF stilling adding DES to protocols? (Re: It's official... DES is History)
daemon@ATHENA.MIT.EDU (Ulf =?iso-8859-1?Q?M=F6ller?=)
Fri Jun 25 19:11:53 1999
Date: Fri, 25 Jun 1999 18:48:49 +0200
From: Ulf =?iso-8859-1?Q?M=F6ller?= <ulf@fitug.de>
To: Adam Shostack <adam@homeport.org>
Cc: cryptography@c2.net, cypherpunks@cyberpass.net, jis@mit.edu
In-Reply-To: <19990625084906.A4113@weathership.homeport.org>; from Adam Shostack on Fri, Jun 25, 1999 at 08:49:06AM -0400
> I'll assert that deploying DES today is WORSE than deploying no crypto
> at all, because of the deployed lifetime of a new product, and the
> associate removal of pressure to deploy an effective cryptosystem.
OpenSSL supports strong crypto. DES support is there only to allow our
users to talk to crippled American browsers and the like. Those we
don't deploy.
Besides, as the developers of open source software we can hardly
exercise pressure on our users.
