Subject: Re: PROPOSAL: adding capability for blowfish passwords
To: Simon Burge <>
From: Steven M. Bellovin <>
List: current-users
Date: 05/23/2002 20:38:32
In message <>, Simon Burge 
>"Steven M. Bellovin" wrote:
>> If you want to 
>> add a new scheme, SHA512 would be a much better choice.
>Something SHA based, or something AES based?

SHA -- in particular, the 512-bit version of SHA2.  See (note that it's 
still a draft FIPS).

		--Steve Bellovin, (me) ("Firewalls" book)