📝 Correction | Unknown encryption curve used by croc #2385
Labels
No Label
🔍🤖 Search Engines
approved
dependencies
duplicate
feedback wanted
high priority
I2P
iOS
low priority
OS
Self-contained networks
Social media
stale
streaming
todo
Tor
WIP
wontfix
XMPP
[m]
₿ cryptocurrency
ℹ️ help wanted
↔️ file sharing
⚙️ web extensions
✨ enhancement
❌ software removal
💬 discussion
🤖 Android
🐛 bug
💢 conflicting
📝 correction
🆘 critical
📧 email
🔒 file encryption
📁 file storage
🦊 Firefox
💻 hardware
🌐 hosting
🏠 housekeeping
🔐 password managers
🧰 productivity tools
🔎 research required
🌐 Social News Aggregators
🆕 software suggestion
👥 team chat
🔒 VPN
🌐 website issue
🚫 Windows
👁️ browsers
🖊️ digital notebooks
🗄️ DNS
🗨️ instant messaging (im)
🇦🇶 translations
No Milestone
No Assignees
1 Participants
Due Date
No due date set.
Dependencies
No dependencies set.
Reference: privacyguides/privacytools.io#2385
Loading…
Reference in New Issue
No description provided.
Delete Branch "%!s(<nil>)"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
Description
The default encryption curve that croc uses is called SIEC and is completely unknown amongst cryptographers and there are only a handful of people who researched or mentioned this curve. A general recommendation in the security and cryptography space is to use known, researched and audited encryption curves. These can be curves like the NIST curves which fortunately are supported by croc, but optional. croc's README.md mentions that it is a lesser known curve and provides options to change to other curves. The user should be made aware of the default encryption curve used.
Why I am making the suggestion
Encryption plays a big role for file sharing applications like croc where data can be sent internationally across various networks. It is important to make sure that this data stays encrypted securely.
My connection with the software
I personally have used the software and found it very practical.