Re: The importance of IVs
From: Paul Rubin (//phr.cx_at_NOSPAM.invalid)
Date: 08/29/05
- Next message: Joseph Ashwood: "Re: Potential DoS on Bittorrent"
- Previous message: mobius30: "Re: The importance of IVs"
- In reply to: mobius30: "Re: The importance of IVs"
- Next in thread: mobius30: "Re: The importance of IVs"
- Reply: mobius30: "Re: The importance of IVs"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: 29 Aug 2005 14:31:51 -0700
"mobius30" <mobius30@hushmail.com> writes:
> >Blowfish wasn't *qualified* for the AES competition; it only had
> >64-bit blocks.
>
> Agreed. It didn't meet the entry requirements. However, what makes an
> algorithm "qualified"?
AES candidates had to have 128 bit blocks.
> Really though, NSA endorsement aside, what makes AES any more secure
> than Blowfish?
For one thing, its block size is larger.
> Just because Blowfish has 64-bit blocks does not make it any less
> secure than AES.
The 64 bit blocksize is in fact a security weakness for some types of
use.
> Is Blowfish the right algorithm for ALL purposes? Absolutely NOT.
Is it the right algorithm for AS MANY purposes as AES? Also no.
Are there specific purposes where AES is better than Blowfish? Yes,
quite a few.
Are there specific purposes where Blowfish is better than AES? I
won't say "absolutely not", but it would take some head scratching to
come up with some.
I'm not trying to slam Blowfish. It was a good contribution back in
the DES era but we've had a lot of progress since then. The new
knowledge lets us do stuff better than we could before. Let's not
throw away that opportunity.
- Next message: Joseph Ashwood: "Re: Potential DoS on Bittorrent"
- Previous message: mobius30: "Re: The importance of IVs"
- In reply to: mobius30: "Re: The importance of IVs"
- Next in thread: mobius30: "Re: The importance of IVs"
- Reply: mobius30: "Re: The importance of IVs"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
