[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: 3DES (was: ipsec vs. firewalls)

To: Steve Bellovin <smb@research.att.com>
Subject: Re: 3DES (was: ipsec vs. firewalls)
From: Lewis McCarthy <lmccarth@cs.umass.edu>
Date: Fri, 08 May 1998 11:43:15 -0400
CC: IP Security List <ipsec@tis.com>
Organization: UMass-Amherst Theoretical Computer Science Group, <http://www.cs.umass.edu/~thtml/>
References: <199805081502.LAA06659@postal.research.att.com>
Sender: owner-ipsec@ex.tis.com

Steve Bellovin writes:
> A more interesting topic is whether or not 3DES should be mandatory-
> to-implement.  I suggest that it should be -- DES is obviously doomed
> (pick your favorite time constant), and we should take that into account.

I agree, but I thought this was one of the arguments that was lost a
long time ago. Can we really revisit it now?

-- 
Lewis    http://www.cs.umass.edu/~lmccarth/
"This information is so readily available to anybody who wants to commit an act
 of terrorism that you have to assume the security community's real interest is
 to raise attentiveness to their role in preventing terrorism in the hope that
 they can increase their budget"
              --Bruce Bueno de Mesquita, Senior Fellow, Hoover Institution,
                (as quoted by CNN) on objections to the EPA listing chemical 
                storage site locations on the Web

References:

3DES (was: ipsec vs. firewalls)

From: Steve Bellovin <smb@research.att.com>

Prev by Date: Re: ipsec vs. firewalls
Next by Date: Re: question about tunnel mode
Next by thread: RE: [Karen Seo: Thomas Narten -- clarification, etc.]
Index(es):
- Main
- Thread