[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: carrick, Blowfish & the NSA



> Jerry Whiting writes:
> > One reason we chose to use Blowfish as the basis for carrick is that
> > it _is_ a new algorithm.  One has to assume that the NSA et al. has
> > tools optimized to crack DES and possibly IDEA/RSA.  At least let's
> > give them something else to sweat over.
> 
> They won't sweat over it long. Blowfish was broken.

Yikes!  Are you sure?  This is the first I've heard of it.  This would mean
that PGPPhone is not secure.