undefined | Better HN

0 pointsapi6y ago0 comments

FIPS is a double-edged sword in my experience. On one hand it does set a standard to keep total snake oil crypto out of government. On the other hand it often has the side effect of mandating worse and older crypto and slowing update cycles when there's a bug. When SSL bugs are discovered vulnerable SSL libraries tend to sit around for a lot longer on FIPS-controlled hosts because they have to wait for a FIPS-validated update.

0 comments

3 comments · 1 top-level

Nursie6y ago· 2 in thread

FIPS also ,at least a decade ago, ruled out things like PFS because actually the federal goverent wanted to be able to audit past traffic.

jnwatson6y ago

Citation please. There are multiple standards that implement PFS in the FIPS specs.

Nursie6y ago

Fair enough, the ones I was involved with implementing/complying with (FIPS 140-2) ruled out things like DH(E) key exchange.

We had to comply with that standard to sell to the federal government at the time.

Things may well have changed.

1 more reply

j / k navigate · click thread line to collapse