Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
veggieWHITES
6 months ago
|
parent
|
context
|
favorite
| on:
Transitioning the Use of Cryptographic Algorithms ...
We shouldn't be listening to the NIST for any sort of Cryptographic advice. [1]
[1]
https://en.wikipedia.org/wiki/National_Institute_of_Standard...
gruez
6 months ago
|
next
[–]
So we should continue using ECB and RSA < 2048?
y-curious
6 months ago
|
parent
|
next
[–]
Not if you want to get FedRAMP designation at any point.
archgoon
6 months ago
|
root
|
parent
|
next
[–]
Ah, but that's a beauty of it. If you encrypt with ECB you can't be decrypted by a federally compliant organization!
kurikuri
6 months ago
|
root
|
parent
|
next
[–]
Unfortunately, a federally compliant organization could still decrypt it because ECB decryption is still allowed for legacy use.
User23
6 months ago
|
prev
[–]
This looks like spooks did spook stuff, got caught, and NIST fixed it? Is there evidence NIST colluded or is the NSA just good at its job?
Join us for
AI Startup School
this June 16-17 in San Francisco!
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
[1] https://en.wikipedia.org/wiki/National_Institute_of_Standard...