Donald Stufft added the comment: > I think performance isn't really relevant, except perhaps on very busy > servers. A smartphone acting as a *client* certainly shouldn't need to > download 20 MB/s of encrypted data.
Well, if you factor out performance then ChaCha20Poly1305 and AES-GCM are more or less equivalent in preference with AES-CBC still less than either of them because of problematic construction choices in the TLS spec. If you factor out performance completely there is maybe a slight preference for ChaCha20Poly1305 over AES-GCM simply because AES-GCM is hard to implement in a timing safe way in software. However that discussion is mostly academic as right now ChaCha20Poly1305 is not available in OpenSSL. In general I agree that the performance of all of these are "good enough" that the average user of this API won't be able to tell the difference, however there is no cost to selecting the generally more performant of the two so I think it still makes sense to consider it. Hopefully what I was trying to achieve was provide some more context for markk so he'd hopefully be able to better understand why the string cipher calls out AES specifically before falling back to HIGH. ---------- _______________________________________ Python tracker <rep...@bugs.python.org> <http://bugs.python.org/issue20995> _______________________________________ _______________________________________________ Python-bugs-list mailing list Unsubscribe: https://mail.python.org/mailman/options/python-bugs-list/archive%40mail-archive.com
