2011.12.05 14:00:18 (143676066727337984) from Daniel J. Bernstein, replying to "Pascal Junod (@cryptopathe)" (143590984742219777):
@cryptopathe Presumably you then have 1000 security disasters, half using standard crypto and half not. You think this is a new experiment?
2011.12.03 09:46:28 (142887412547321857) from "Paul Crowley (@ciphergoth)", replying to "(@aleks___0)" (142732553269424128):
@sasha_crypto @cryptopathe Re Salsa20 > AES: Subjective maybe, but I'm inclined to believe it all the same.
2011.12.03 10:41:23 (142901230912540674) from "Pascal Junod (@cryptopathe)", replying to "Paul Crowley (@ciphergoth)" (142887412547321857):
@ciphergoth @sasha_crypto In practice, people tend to use standardized algorithms, which is a good security practice.
2011.12.04 13:04:49 (143299717613359104) from Daniel J. Bernstein, replying to "Pascal Junod (@cryptopathe)" (142901230912540674):
@cryptopathe Using standards is "good security practice"? Really? Using standard RSA-512 in 1998? Standard MD5-based certificates in 2008?
2011.12.05 08:22:13 (143590984742219777) from "Pascal Junod (@cryptopathe)":
@hashbreaker To the first 500, ask them to use standard crypto. Say nothing to the other 500.