lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Date:   Sun, 10 Jul 2022 17:08:47 +0900
From:   Taehee Yoo <ap420073@...il.com>
To:     Eric Biggers <ebiggers@...nel.org>
Cc:     linux-crypto@...r.kernel.org, herbert@...dor.apana.org.au,
        davem@...emloft.net, borisp@...dia.com, john.fastabend@...il.com,
        daniel@...earbox.net, kuba@...nel.org, edumazet@...gle.com,
        pabeni@...hat.com, netdev@...r.kernel.org
Subject: Re: [PATCH v2 0/3] crypto: Introduce ARIA symmetric cipher algorithm

Hi Eric,
Thanks a lot for your review!

On 7/10/22 07:32, Eric Biggers wrote:
 > On Mon, Jul 04, 2022 at 09:42:47AM +0000, Taehee Yoo wrote:
 >> This patchset adds a new ARIA(RFC 5794) symmetric cipher algorithm.
 >>
 >> Like SEED, the ARIA is a standard cipher algorithm in South Korea.
 >> Especially Government and Banking industry have been using this 
algorithm.
 >> So the implementation of ARIA will be useful for them and network 
vendors.
 >>
 >> Usecases of this algorithm are TLS[1], and IPSec.
 >
 > Is this actually going to be used in the real world, or is this just 
a PhD
 > thesis sort of thing?  There are already way too many random crypto 
algorithms
 > that are supported in the kernel, and many have been removed due to 
lack of
 > users -- implying that they should never have been accepted in the 
first place.
 >
 > - Eric

The ARIA is used as the standard cipher algorithm in South Korea.
Therefore the government and companies who want to work with the
government should use this algorithm.
The specific usecase is the e-government standard framework[1] in South
Korea, which is a standard framework that helps to develop software for
the government, It uses ARIA cipher.

Also, the OpenSSL already supports ARIA cipher for TLS so I think we can
use ARIA-kTLS with a simple PR.

I think these are good usecases.
This is not just an idea/thesis without usecases.

[1] https://www.egovframe.go.kr/eng/main.do

Thanks a lot!
Taehee Yoo

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ