← Back to team overview

sslug-teknik team mailing list archive

  1. sslug-teknik team
  2. Mailing list archive
  3. Message #80284

Re: 3DES sikkerhed (var: [TEKNIK] Findes et os pop3 system, der er let at administrere og som er sikkert?)

  Thread PreviousDate PreviousThread Next 
On Sun, 2005-02-13 at 17:10, Egon Andersen wrote:
> Anders Melchiorsen wrote:
> > Egon Andersen <post@xxxxxxxxx> skrev:
> > 
> > 
> >>Jon Bendtsen wrote:
> > 
> > 
> > [...]
> > 
> > 
> >>>3DES        <----- usikkert
> > 
> > 
> > [...]
> > 
> > 
> >>Hvorfor er det lige 3DES skulle være usikker?
> > 
> > 
> > Det blev diskuteret, sidst Jon kom med påstanden:
> > 
> >    http://www.sslug.se/emailarkiv/teknik/2004_11/msg00359
> > 
> 
> Jeg checkede diskussionen, men der var vist mest påstande, ikke mange 
> referencer til underbyggelse.
> 
> Jeg googlede lidt og fandt:
> 
> http://www.freeswan.org/freeswan_trees/CURRENT-TREE/doc/politics.html
> 
> <citat>
> Triple DES is almost certainly secure
> 
> Triple DES, usually abbreviated 3DES, applies DES three times, with 
> three different keys. DES seems to be basically an excellent cipher 
> design; it has withstood several decades of intensive analysis without 
> any disastrous flaws being found. It's only major flaw is that the small 
> keyspace allows brute force attacks to succeeed. 

http://csrc.nist.gov/Federal-register/July26-2004-FR-DES-Notice.pdf

> Triple DES enlarges the 
> key space to 168 bits, making brute-force search a ridiculous impossibility.

Computere bliver også "latterligt hurtige".
En gang troede man at 640kB var "latterligt meget" RAM...

Men netop at det 'kun' er brute force angreb der _kan_ lykkes må da
betyde at algoritmen er sikker, det er bare definitionen af 'brute
force' som ændrer sig.

....Give enough monkeys enough typewriters....

<snip>

-- 
/Kenn

Follow ups

References

  Thread PreviousDate PreviousThread Next