Skip to content

Remove DES #9164

Open
Open
@gilles-peskine-arm

Description

@gilles-peskine-arm

Remove DES from the next major version of Mbed TLS.

Rationale: DES, even 3DES, is no longer in common use. NIST no longer allows it except to process legacy data since the withdrawal of SP 800-67r2 in January 2024. DES remains in use mainly in some banking applications, where Mbed TLS is not commonly used.

This is broader than #4396 and easier to do.

Mailing list thread: https://lists.trustedfirmware.org/archives/list/[email protected]/thread/26ZWV67A4ECK2D5LSPJEDTT22MLOJOMQ/

Metadata

Metadata

Assignees

Labels

api-breakThis issue/PR breaks the API and must wait for a new major versioncomponent-cryptoCrypto primitives and low-level interfacessize-sEstimated task size: small (~2d)

Type

No type

Projects

Status

Implementation in progress

Status

1.0/4.0 SHOULDs

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions