[SUGGESTION NEEDED] A request for suggestion on furthering the discussion over ElGamal

Weikeng Chen w.k at berkeley.edu
Thu Oct 19 18:29:05 CEST 2017


Hi Werner

But will "
  Thorough understanding of applied cryptography is required
  to use Libgcrypt."

be an effective warning rather than just a disclaimer?

Weikeng

On Thu, Oct 19, 2017 at 4:57 AM, Werner Koch <wk at gnupg.org> wrote:
> On Thu, 19 Oct 2017 03:35, gniibe at fsij.org said:
>
>> It would be good to have elgamal-schnorr.c in libgcrypt, but I don't
>> know if it's worth or not.  Which application uses that?
>
> I can't tell either.  Let me note that for example GNUnet uses and used
> modified versions of standard algorithms and they have not yet made it
> into Libgcrypt as a "high-level" API.  Thus they need to use lower level
> functions of Libgcrypt to implement that - which of course works.  When
> we are getting to the point that those algorithms are in widespread use,
> it will indeed make sense to implement a dedicated API for such an
> algorithm.
>
>> for me that we have better choice on a cyclic group other than Schnorr
>> Group.  Say, Elliptic curve?
>
> GNUnet also moved away from DSA to EC derived algorithms.
>
> Regarding the improper use of Elgamal, the Libgcrypt release
> announcements tell this:
>
>   Thorough understanding of applied cryptography is required
>   to use Libgcrypt.
>
>
>
>
> Salam-Shalom,
>
>    Werner
>
>
> --
> Die Gedanken sind frei.  Ausnahmen regelt ein Bundesgesetz.



-- 

Weikeng Chen @ 795 Soda Hall



More information about the Gcrypt-devel mailing list