Re: On shared keys (was RE: SOI: identity protection and DOS)

[Derek Atkins <warlord@mit.edu>]

Alex Alten <Alten@Home.Com> writes:

> Given that this is a 25 year old design I think that using 1-DES as a problem
> is not a fair statement.  I personally know one of the original designers

You are right that 25 years ago 1-DES was a reasonable design choice.
The fact that it hasn't been upgraded in 25 years is most certainly a
problem.  Considering the effectiveness of Deep Crack, I would hope
that the banking industry would be trying to upgrade to at least 3-DES
relatively quickly.

-derek
-- 
       Derek Atkins, SB '93 MIT EE, SM '95 MIT Media Laboratory
       Member, MIT Student Information Processing Board  (SIPB)
       URL: http://web.mit.edu/warlord/    PP-ASEL-IA     N1NWH
       warlord@MIT.EDU                        PGP key available

---

Follow-Ups:

• Re: On shared keys (was RE: SOI: identity protection and DOS)
• From: Paul Koning <ni1d@arrl.net>

References:

• Re: On shared keys (was RE: SOI: identity protection and DOS)
• From: Alex Alten <Alten@home.com>
• RE: On shared keys (was RE: SOI: identity protection and DOS)
• From: Alex Alten <Alten@home.com>
• Re: On shared keys (was RE: SOI: identity protection and DOS)
• From: Alex Alten <Alten@home.com>

---

• Prev by Date: ESP Draft
• Next by Date: I-D ACTION:draft-ietf-ipsec-ciph-aes-cbc-03.txt
• Prev by thread: Re: On shared keys (was RE: SOI: identity protection and DOS)
• Next by thread: Re: On shared keys (was RE: SOI: identity protection and DOS)
• Index(es):
  • Main
  • Thread