[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Incorporation of AES into IPSec

To: jerome@psti.com
Subject: Re: Incorporation of AES into IPSec
From: Tero Kivinen <kivinen@ssh.fi>
Date: Mon, 6 Dec 1999 20:48:05 +0200 (EET)
Cc: Mark Shuttleworth <marks@thawte.com>, ipsec@lists.tislabs.com
In-Reply-To: <19991206115932.A26797@jerome.psti.com>
Organization: SSH Communications Security Oy
References: <384BD0FE.35DF2320@thawte.com><19991206115932.A26797@jerome.psti.com>
Sender: owner-ipsec@lists.tislabs.com

jerome@psti.com writes:
> > If you were wanting to protect
> > data for 50 years, would 3DES be good enough?
> it's hard to do prediction over so long time, but 3DES has a 168bits key.
> it is safe against a brute force attack. A cryptanalitic breakthrough

No, 3DES do NOT have 168 bits of strength. Its effective strength is
112 bits, if you have 2^56 blocks of memory. You can find more
information in the Applied Cryptography (Bruce Schneier, ISBN
0-471-11709-9) ) in section 15.2. There is also reference there to the
following article:

R.C. Merkle and M. Hellman, "On the Security of Multiple Encryption,"
Communications of the ACM, v.24, n. 7, 1981, pp. 465-467.

which propably contains even more information... 
-- 
kivinen@iki.fi                               Work : +358-9-4354 3218
SSH Communications Security                  http://www.ssh.fi/
SSH IPSEC Toolkit                            http://www.ssh.fi/ipsec/

Follow-Ups:

Re: Incorporation of AES into IPSec

From: jerome@psti.com

References:

Re: Incorporation of AES into IPSec

From: Mark Shuttleworth <marks@thawte.com>

Re: Incorporation of AES into IPSec

From: jerome@psti.com

Prev by Date: RE: Heartbeats (was RE: keepalives)
Next by Date: Re: Incorporation of AES into IPSec
Prev by thread: Re: Incorporation of AES into IPSec
Next by thread: Re: Incorporation of AES into IPSec
Index(es):
- Main
- Thread