[noise] What noise/blake2b is being used for
Trevor Perrin
trevp at trevp.net
Wed Nov 4 15:06:04 PST 2015
On Wed, Nov 4, 2015 at 2:59 PM, Jason A. Donenfeld <Jason at zx2c4.com> wrote:
>
> On Nov 4, 2015 11:54 PM, "Trevor Perrin" <trevp at trevp.net> wrote:
>> > Okay good to know about the speed trade-off. Right now I'm doing a sort
>> > of
>> > awkward dance of having "Curve25519 + Blake2b", which is a bit
>> > incoherent.
>>
>> The larger hash is more conservative. It's even more overkill, but
>> there's nothing wrong with that, if it doesn't cost you anything.
>
> The concern is just -- what's the point in having a strong hash when I'm
> using a weaker curve?
Cryptanalysis might find weaknesses in the hash.
All of these things are secure against "brute-force" attacks, but you
don't know what the future holds for cryptanalysis, and bigger keys /
hashes might have more margin against cryptanalysis.
Trevor
More information about the Noise
mailing list