2011.12.09 14:24:55 (145131814351155200) from Daniel J. Bernstein, replying to "JP Aumasson (@veorq)" (145091081296551937):
@aumasson One common argument for "don't use anything non-standard" is "all non-standards are insecure"---but that's a wild exaggeration.
2011.12.05 14:28:53 (143683259157581825) from "JP Aumasson (@veorq)", replying to "Pascal Junod (@cryptopathe)" (143680783608053760):
@cryptopathe @hashbreaker OTOH stdness is the cheapest way to figure out which cipher does the job with high probability
2011.12.05 15:29:14 (143698447189553152) from "Matthew Green (@matthew_d_green)", replying to "JP Aumasson (@veorq)" (143683259157581825):
@aumasson @cryptopathe @hashbreaker ... but that I have so much in nonstandards being wrong. (to paraphrase Asimov).
2011.12.09 11:28:49 (145087498001985536) from Daniel J. Bernstein, replying to "Matthew Green (@matthew_d_green)" (143698447189553152):
@matthew_d_green Seriously? Whenever you see non-standard crypto, you confidently say it's bad? You claim that Serpent is bad, for example?
2011.12.09 11:43:04 (145091081296551937) from "JP Aumasson (@veorq)":
@hashbreaker @matthew_d_green guess we all agree that Pr( bad | non-standard) >= Pr( bad | standard ) /cc @cryptopathe