AES vs. Serpent vs. Twofish (was Re: KeePass or any other password wallet to store and transport keys)
Faramir
faramir.cl at gmail.com
Sat Jul 28 03:27:38 CEST 2012
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
El 26-07-2012 5:56, Ben McGinnes escribió:
> On 26/07/12 6:40 PM, Robert J. Hansen wrote:
...
>> For instance, I don't like Serpent very much on account of how
>> complex it is. My rule of thumb is, "if I don't believe an
>> undergraduate in computer science can understand this algorithm,
>> how can I expect people to implement this algorithm correctly?"
Lets hope people developing TrueCrypt have a graduated in computer
science among them ;)
...
> Interesting. Most of the things I've read on Serpent, which
> admittedly isn't much, is about how it was not accepted for AES
> because of the speed aspects rather than other aspects and that it
> may be more secure.
I *think* I remember B. Schneier said Serpent is the most secure
from AES contest. Current AES is recommended because it is the
standard, so, "no one gets fired for using AES" (like IBM), and for
his money, he would use TwoFish (if we consider Schneier was
uncomfortable with some things about AES that now are known to be not
as strong as they were supposed to be, maybe TwoFish lacks those
vulnerabilities... but might have other undiscovered issues. Good
thing is, *if* they remain undiscovered, they won't be exploited).
Anyway, one reason to cascade the 3 algorithms might be: Serpent,
because it is the most secure. TwoFish, because it might lack the
vulnerabilities AES has, and because we might be affraid Serpent was
not implemented right. And AES, because it is the standard, and no one
gets fired for chosing AES. Now, if we consider Serpent was rejected
because its lack of speed, the 3 algos together must be like an
arthritic snail...
Best Regards
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
iQEcBAEBCAAGBQJQE0AJAAoJEMV4f6PvczxA/dIH/0PI/mVXDIaPVIepybEPTwhu
xEcTwm4g+1tpN7E55WdRoLIbA9tGvmEHSYk2Wt/fKhee0Txs/Aymnu/jhGL7Ikt0
24+Qjp5ZD3Z90Vmqppc9khBQiYI9i5MWnV5ZgiHejBNL/SI5wkHB/0AuV/Ck0KPO
4DEl+U5s/6uidcxmZGr3Xg74fCiOMzKSWhQ49j5rLuK3NhStcuUUpuUMj977Fuae
jVsD6Nt38n7dCoNq2sUduFgWeBnvuO5z0Ms7OroCvqlpKgXQiCcdR6IRWIEZhAAi
jGvoJfN/A+QpZ6S+xAq3dWecmS+O63j1Lp3laycMQfImotWYZi2mVs/xqQNkZHI=
=RI9P
-----END PGP SIGNATURE-----
More information about the Gnupg-users
mailing list