I think out of a desire to make sure that people were implementing aes256 as that is the mandatory to implement enctype. Probably we should eventually change the code to allow aes128 by default. Let us know if you need this to happen.