Would there be an interest in, or philosophical/design objections to, a
patch to allow Fernet to use AES192 and AES256 encryption? I've got a
situation where Fernet would be a good fit but 256-bit encryption is
highly desired.
smime.p7s
Description: S/MIME Cryptographic Signature
__
Fernet is a standard maintained outside pyca/cryptography, we wouldn't
implement anything in Fernet that wasn't a part of that standard.
The standard itself is in something of a hybernation state ATM, so candidly
I don't know how receptive they'd be to such a proposed change.
I fear your best opt
On 05/27/2016 07:36 PM, Alex Gaynor wrote:
Fernet is a standard maintained outside pyca/cryptography, we wouldn't
implement anything in Fernet that wasn't a part of that standard.
How about a version that left the Fernet class itself using AES128 but
added new classes that'd use AES192 and AES25
The problem is Fernet refers to a specific standard, if you change it,
you've got something new and not interoperable :-)
Alex
On Sat, May 28, 2016 at 12:25 AM, Todd Knarr wrote:
> On 05/27/2016 07:36 PM, Alex Gaynor wrote:
>
>> Fernet is a standard maintained outside pyca/cryptography, we woul
On 05/27/2016 09:27 PM, Alex Gaynor wrote:
The problem is Fernet refers to a specific standard, if you change it,
you've got something new and not interoperable :-)
Oddly, it /would/ interoperate (at least using cryptography's
implementation) if you used the correct-sized key for the AES encrypt
