## Comment Re:NSA and elliptic curve (Score 1) 397

He elaborated (slightly) in a blog comment

>"You recommended to 'Prefer symmetric cryptography over public-key cryptography.' Can you elaborate on why?"

> It is more likely that the NSA has some fundamental mathematical advance in breaking public-key algorithms than symmetric algorithms.

http://www.schneier.com/blog/archives/2013/09/the_nsa_is_brea.html#comments

I think his reasoning is that the NSA is more likely to have a clever hack for elliptic curve crypto which is why they've been pushing it - the ideal situation for the NSA is that everyone uses crypto that the NSA *but nobody else* can break.