Van de Ven: Deprecating old crypto
Van de Ven: Deprecating old crypto
[Security] Posted Mar 24, 2015 20:46 UTC (Tue) by corbet
Worth a read: this post
from Arjan van de Ven on the difficulty of removing old, insecure
cryptographic algorithms from a Linux distribution. "But more, and
this is a call to action: If you're working on an open source project that
uses crypto, please please don't opencode crypto algorithm usage. The
algorithm may be outdated at any time and might have to go away in a
hurry.
"