There's an interesting note in the CISA SolarWinds incident response recommendations:
"Set account options for service accounts to support AES256_CTS_HMAC_SHA1_96 and not support DES, RC4, or AES128 bit encryption"
Is CISA suggesting that AES-128 is no longer secure? I understand that people should choose the most secure encryption reasonably possible, but that's different than instructing people to not support something. I hope this isn't one of those cases where CISA knows something and aren't telling us yet. A more conspiratorial view is that the US government knows a foreign adversary has cracked AES-128. I think that's unlikely, but possible.
"Set account options for service accounts to support AES256_CTS_HMAC_SHA1_96 and not support DES, RC4, or AES128 bit encryption"
Is CISA suggesting that AES-128 is no longer secure? I understand that people should choose the most secure encryption reasonably possible, but that's different than instructing people to not support something. I hope this isn't one of those cases where CISA knows something and aren't telling us yet. A more conspiratorial view is that the US government knows a foreign adversary has cracked AES-128. I think that's unlikely, but possible.