|
|
|
|
|
|
by loeg
2449 days ago
|
|
|
In new designs or like, SSH keys? For new designs: basically just use libsodium. For SSH: Ed25519 or 2048 bit RSA. We can get into the weeds about which specific cryptographic primitives are fine in isolation, but that misses the point — the ones that were fine 5-10 years ago are still more or less fine — the problems for developers and end-users generally stem from accidental misuse of cryptographic primitives in designing systems incorporating cryptographic primitives as a component. Sure, don't use DES, DSA, or MD5/SHA1; strong primitives are only necessary, not sufficient. |
|
|
Check out libhydrogen from the same author. The API contains less footguns (like nonces).