projects / gnupg2.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: a443e91) | patch
gpg: default to AES-256.
authorDaniel Kahn Gillmor <dkg@fifthhorseman.net>
Thu, 7 Sep 2017 23:04:00 +0000 (19:04 -0400)
committerDaniel Kahn Gillmor <dkg@fifthhorseman.net>
Sun, 30 Sep 2018 16:40:42 +0000 (17:40 +0100)
commit3bbdcf5cfee5f274fb83c9e41f977341b952c7c5
tree48c1f84d5117443cf1c10a4dde804207429eed90tree | snapshot
parenta443e91c6b1af58abe1982d44dd3607308c9d42fcommit | diff
gpg: default to AES-256.

* g10/main.h (DEFAULT_CIPHER_ALGO): Prefer AES256 by default.

--

It's 2017, and pretty much everyone has AES-256 available.  Symmetric
crypto is also rarely the bottleneck (asymmetric crypto is much more
expensive).  AES-256 provides some level of protection against
large-scale decryption efforts, and longer key lengths provide a hedge
against unforseen cryptanalysis.

Signed-off-by: Daniel Kahn Gillmor <dkg@fifthhorseman.net>
(cherry picked from commit 73ff075204df09db5248170a049f06498cdbb7aa)

Gbp-Pq: Topic from-master
Gbp-Pq: Name gpg-default-to-AES-256.patch
g10/main.h diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.