Comment 3 for bug 825986
Revision history for this message
| João Pedro Afonso Oliveira de Almeida (jpoa) wrote Re: [Syncany-team] [Bug 825986] Re: Use a safer encyption algorithm | #3 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
bbfa235
demo site
(Get the code!)
I have to agree with Philipp here, AES adoption has never convinced me
properly.
Kinda like what is happening in GSM networks, quite convenient IMHO...
Unless it really hurts performance, Syncany should have solid security
features (one of the key points of Syncany is that you can host it on your
own server, hence secure your data, so it should be done in the best way
possible - consider the possibilities for enterprises).
Best regards!
On Tue, Aug 30, 2011 at 6:08 PM, Michael Ekstrand <email address hidden>wrote:
> What's wrong with AES? Properly used (CBC or CTR, good keying, etc.),
> it's pretty standard for secure deployments and is a FIPS standard.
>
> --
> You received this bug notification because you are a member of Syncany
> Team, which is subscribed to Syncany.
> https:/
>
> Title:
> Use a safer encyption algorithm
>
> Status in Syncany:
> Confirmed
>
> Bug description:
> Actually, the algorithms used by Syncany are too unsafe (only AES and
> 3DES). It's a huge security bug IMHO.
>
> Syncany should be able to use safer encyption algorithms like PGP
> (GPG) or AES+Twofish+
>
> To manage notifications about this bug go to:
> https:/
>
> --
> Mailing list: https:/
> Post to : <email address hidden>
> Unsubscribe : https:/
> More help : https:/
>