[gnutls-devel] ChaCha20 and Poly1305

Nikos Mavrogiannopoulos nmav at gnutls.org
Fri Dec 20 23:03:48 CET 2013

> Hi,
> have you considered to implement ChaCha20 and Poly1305 based Cipher
> Suites in GnuTLS?
> https://tools.ietf.org/id/draft-agl-tls-chacha20poly1305-04.html
> ChaCha20 is a stream cipher developed by D. J. Bernstein. It is a
> refinement of Salsa20 and was used as the core of the SHA-3 finalist,

[for some reason this was tagged as spam and I missed it]

 We already have salsa20 as an experimental cipher, and even
a poly-mac version with UMAC-96 (see [0] and its 03 version).
We proposed it to IETF, earlier this year, but as you see  
other different proposals followed. We will certainly add any 
ciphersuite accepted by the TLS working group but I don't see
any point into adding more experimental ciphersuites.

We'll reconsider of course if the TLS WG doesn't decide on the


[0]. http://tools.ietf.org/html/draft-josefsson-salsa20-tls-04

More information about the Gnutls-devel mailing list