Hacker News new | ask | show | jobs
by dependenttypes 2362 days ago
> NSA recommended people stop using ECC <384 bits (https://apps.nsa.gov/iaarchive/programs/iad-initiatives/cnsa...).

Yet they are still fine with AES-128, even though it is objectively a weaker link in the chain. See https://blog.cr.yp.to/20151120-batchattacks.html
1 comments
nullc 2362 days ago
If you follow the link in my message you will see a table with "Use 256 bit keys" for AES.
link