Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

You dont have many options in FIPS land.


DJB's ed25519 has made it into NIST and FIPS now. ChaCha20 too, but only in the context of TLS.


The story is more complicated. EdDSA was removed from the OpenSSL certificate and ChaCha20 was never there.


> ChaCha20 too, but only in the context of TLS

It isn't. And that's a problem, because that means an implementation can't be both FIPS compliant and compliant with the TLS 1.3 RFC.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: