[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Fwd: Cylink can export 128-bit DH?]

To: [email protected] (Mike Duvos)
Subject: Re: [Fwd: Cylink can export 128-bit DH?]
From: "Perry E. Metzger" <[email protected]>
Date: Thu, 02 May 1996 08:52:49 -0400
cc: [email protected]
In-reply-to: Your message of "Wed, 01 May 1996 16:12:28 PDT." <[email protected]>
Reply-To: [email protected]
Sender: [email protected]

Mike Duvos writes:
> [email protected] (Bill Frantz) writes:
> 
>  > Most cryptographic experts recommend Triple DES, encrypting
>  > the data 3 times with 3 different keys.
> 
> It's actually encrypted three times with two keys comprising
> 112 bits of keyspace, using a decrypt on one key sandwiched
> between two encrypts using the other.  This prevents a "man
> in the middle" attack, which would be possible if only two
> DES encryptions were used, one for each key.

Many 3DES implementations actually do use 3 different
keys. Surprisingly, the strength of 3DES with 3 keys is around the
strength you would naively expect 3DES with 2 keys to have, and 3DES
with 2 keys is slightly weaker than you would expect...

.pm

References:
- Re: [Fwd: Cylink can export 128-bit DH?]
  - From: [email protected] (Mike Duvos)

Prev by Date: aufweidersehn, * grave$
Next by Date: [History] USPS tried to monopolize email? (c. 1981)
Prev by thread: Re: [Fwd: Cylink can export 128-bit DH?]
Next by thread: Re: [Fwd: Cylink can export 128-bit DH?]
Index(es):
- Date
- Thread