[PATCH] curve25519-sha256 at libssh.org key exchange proposal
Damien Miller
djm at mindrot.org
Wed Nov 6 09:14:54 EST 2013
On Tue, 5 Nov 2013, mancha wrote:
> Finally, there's a high value to the OpenSSH community in expanding
> options available (kexalg, mac, cipher, etc.) so let me express my
> hope for continued vigorous activity in this area.
There's also cost. Each new algorithm we add increases attack surface
and maintenance cost. We don't want to add things just because they
are available, they have to offer something that the current set of
options don't.
At the moment, we're only looking at adding ed25519 as a public-key
algorithm and chacha20+poly1305 as an AEAD similar to Adam Langley's
proposal for TLS:
http://tools.ietf.org/html/draft-agl-tls-chacha20poly1305-01
-d
More information about the openssh-unix-dev
mailing list