Y
Hacker News
new
|
ask
|
show
|
jobs
by
veggieWHITES
602 days ago
We shouldn't be listening to the NIST for any sort of Cryptographic advice. [1]
[1]
https://en.wikipedia.org/wiki/National_Institute_of_Standard...
2 comments
gruez
602 days ago
So we should continue using ECB and RSA < 2048?
link
y-curious
602 days ago
Not if you want to get FedRAMP designation at any point.
link
archgoon
602 days ago
Ah, but that's a beauty of it. If you encrypt with ECB you can't be decrypted by a federally compliant organization!
link
kurikuri
601 days ago
Unfortunately, a federally compliant organization could still decrypt it because ECB decryption is still allowed for legacy use.
link
User23
601 days ago
This looks like spooks did spook stuff, got caught, and NIST fixed it? Is there evidence NIST colluded or is the NSA just good at its job?
link