Message 273361 - Python tracker

➜

This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author	pitrou
Recipients	alex, christian.heimes, dstufft, giampaolo.rodola, gregory.p.smith, janssen, pitrou
Date	2016-08-22.11:49:31
SpamBayes Score	-1.0
Marked as misclassified	Yes
Message-id	<[email protected]>
In-reply-to

Content
I still think it's a slippery slope to include such specialized APIs that most people don't know what to make of. This reminds me of `RAND_egd()`. If ChaCha20-Poly1305 is always /at least/ as secure as AES-GCM (and sometimes more), then we should simply prioritize it in the cipher list, regardless of a potentially poorer performance that probably never has an actual impact on the Python-written application (correct me if I'm wrong here).

I still think it's a slippery slope to include such specialized APIs that most people don't know what to make of.  This reminds me of `RAND_egd()`.

If ChaCha20-Poly1305 is always /at least/ as secure as AES-GCM (and sometimes more), then we should simply prioritize it in the cipher list, regardless of a potentially poorer performance that probably never has an actual impact on the Python-written application (correct me if I'm wrong here).

History
Date	User	Action	Args
2016-08-22 11:49:31	pitrou	set	recipients: + pitrou, gregory.p.smith, janssen, giampaolo.rodola, christian.heimes, alex, dstufft
2016-08-22 11:49:31	pitrou	set	messageid: <[email protected]>
2016-08-22 11:49:31	pitrou	link	issue27768 messages
2016-08-22 11:49:31	pitrou	create