[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Fwd: Cylink can export 128-bit DH?]

To: [email protected]
Subject: Re: [Fwd: Cylink can export 128-bit DH?]
From: [email protected] (Mike Duvos)
Date: Wed, 1 May 1996 23:44:31 -0700 (PDT)
In-Reply-To: <[email protected]> from "Raph Levien" at May 1, 96 09:21:00 pm
Sender: [email protected]

Raph Levien writes:

> Double DES is subject to a "meet in the middle" attack (not a "man in
> the middle"). 

Yes, a silly mistake on my part, which shows I should proofread even
the little messages before posting them. :)

Gleeful readers are filling my mailbox hoping to be the first to point
out this unfortunate error. 

> Thus, using
> three keys is more work for the attacker than using two. So, modern
> cryptographic usage is exactly as Bill said - three keys, three
> encryptions. For example, S/MIME recommends the use of DES-EDE3-CBC (the
> middle encryption is technically a decryption, although it doesn't
> really make any difference).

S/MIME aside, I was under the impression that the term "Triple-DES"
referred to the encrypt-decrypt-encrypt operation using two 
distinct keys, proposed by some for adoption as the successor to 
single DES. 

Has this usage now changed in favor of the three key version?

--
     Mike Duvos         $    PGP 2.6 Public Key available     $
     [email protected]     $    via Finger.                      $

Follow-Ups:
- Re: [Fwd: Cylink can export 128-bit DH?]
  - From: Phil Karlton <[email protected]>

References:
- Re: [Fwd: Cylink can export 128-bit DH?]
  - From: Raph Levien <[email protected]>

Prev by Date: Re: [LONG] Churchill Club: 20th Anniversary PK Crypto
Next by Date: Re: The Joy of Java
Prev by thread: Re: [Fwd: Cylink can export 128-bit DH?]
Next by thread: Re: [Fwd: Cylink can export 128-bit DH?]
Index(es):
- Date
- Thread