Re: TripleAES Encryption

From: flip (flip_alpha@safebunch.com)
Date: 01/17/03

• Next message: Henrick Hellström: "Re: TripleAES Encryption"
• Previous message: pleyland@microsoft.com: "Re: Which paper and pencil cipher to use ?"
• Maybe in reply to: Michael Amling: "Re: TripleAES Encryption"
• Next in thread: Henrick Hellström: "Re: TripleAES Encryption"
• Reply: Henrick Hellström: "Re: TripleAES Encryption"
• Reply: Peter Trei: "Re: TripleAES Encryption"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

From: "flip" <flip_alpha@safebunch.com>
Date: Fri, 17 Jan 2003 07:11:33 -0800

"Info" <info-no-spam@reflective-technologies.com> wrote in message
news:Y3VydHdpbGw=.1db5753a4b92da6aab8fc96378d21ef4@1042811477.cotse.net...
> I've recently seen an ad for a product claiming 3AES encryption.
>
> As I understand 3DES, a plaintext is first encrypted with DES, then
> decrypted with DES using an unrelated key and finally encrypted with
> DES again using an unrelated key. Is this understanding correct?
>
> I understand the need for separate keys, but why decrypt as the second
> step? Can the same benefit be achieved by encrypting at step 2?
>

Triple DES comes in several flavors.

There is two key triple DES or three key triple DES. Neither has been
broken to date. This has been compared to doubling and tripling the key
strength of 56-bits (really 64 with parity bits).

The reson for this was that a brute force attack on a 56-bit key was shown
to be possible with around 200K worth of HW (not a lot of money for a gov.
or corp.). Of course, doubling or tripling the key size has made this
attack exponentially more difficult.

Also, there is the EDE (Encrypt-Decrypt-Encrypt) and the EEE
(Encrypt-Encrypt-Encrypt) variant. For some reasons EDE makes a better
acronym and seems to be used more in practice (I am not sure why this
happened, but perhaps someone here knows).

TripleAES sounds like snake oil to me because we already have a 128, 192,
and 256 bit keys available to us.

Does that answer your question?

HTH, Flip

• Next message: Henrick Hellström: "Re: TripleAES Encryption"
• Previous message: pleyland@microsoft.com: "Re: Which paper and pencil cipher to use ?"
• Maybe in reply to: Michael Amling: "Re: TripleAES Encryption"
• Next in thread: Henrick Hellström: "Re: TripleAES Encryption"
• Reply: Henrick Hellström: "Re: TripleAES Encryption"
• Reply: Peter Trei: "Re: TripleAES Encryption"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: TripleAES Encryption ... >> I've recently seen an ad for a product claiming 3AES encryption. ... >> As I understand 3DES, a plaintext is first encrypted with DES, then ... > There is two key triple DES or three key triple DES. ... These chips are often made to *require* 3 keys, ... (sci.crypt) 3DES and super-encryption ... I'm basically familiar with 3DES and how it was developed to extend the ... short version of what I know about the transition from DES ... DES is basically a secure cipher except that with 56 bit keys it is ... adds nothing to the strength of encryption but may actually weaken a cipher. ... (sci.crypt) Re: DES and UUEncoded ... If you're using CBC mode encryption, than you need to use an IV by definition. ... You'll need to find some documentation for the DES utility you're ... >> Next you create a MemoryStream that will hold the output of your ... (microsoft.public.dotnet.security) Cryptography FAQ (05/10: Product Ciphers) ... What makes a product cipher secure? ... What exactly is DES? ... Let E_Kbe the encryption of X under key K. Then, for any fixed K, ... (sci.crypt) Cryptography FAQ (05/10: Product Ciphers) ... What makes a product cipher secure? ... What exactly is DES? ... Let E_Kbe the encryption of X under key K. Then, for any fixed K, ... (sci.crypt)

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint