The symmetric ciphers
Robert J. Hansen
rjh at sixdemonbag.org
Thu Oct 31 00:15:28 CET 2013
> So, if I have ciphers A, B and C, and a way to combine them into one
> symmetric cpher that is at least as strong as the strongest among
> them, I could use this combined cipher for somewhat secure
> communication as long as at least one of A, B, C is not broken, even
> if I do not know which ones are broken.
Or you could just use 3DES.
Reposted from the last time was wondering if anything had been broken in
the OpenPGP suite:
=====
I have said this many times in the past; apparently I need to say it again.
"3DES has been turning brilliant cryptanalysts into burned-out alcoholic
wrecks for over thirty years."
Nothing in the OpenPGP suite comes anywhere near to the safety provided
by 3DES. Nothing even comes *close*. Assuming your adversary has
access to more computing power than exists in the entire world, 3DES
offers "only" 112 bits of security; for realistic assumptions about
computing power, 3DES offers the full 168 bits.
3DES is ugly, awkward, ungainly, slow, and it has all the aesthetic
appeal of the Socialist Realism school of art. It is *awful*. And yet,
it keeps on going, completely impervious to the last three decades of
cryptanalysis.
It reminds me quite a lot of the coelacanth -- a fish that was found in
the fossil record 400 million years ago, and still can be found swimming
in the oceans today. If you look at a coelacanth it just looks
primitive, unevolved, and strangely frightening. It has survived the
last 400 million years of Nature's attempts at killing it. It commands
respect and admiration, even while at the same time giving vague
feelings of revulsion.
3DES is our coelacanth.
http://outlookcolumbus.com/wp-content/uploads/2013/02/coelacanth1.jpg
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 455 bytes
Desc: OpenPGP digital signature
URL: </pipermail/attachments/20131030/01c56594/attachment.sig>
More information about the Gnupg-users
mailing list