Re: How long to trust 3DES

From: "Alan" <a__l__a__n@xxxxxxxxxxx>
Date: 13 Sep 2006 08:03:28 -0700

Francois Grieu wrote:

The threat of full decryption, equivalent to key recovery,
seems remote, but I would not say null given the timeframe.

A much more sizable threat is partial decryption, especially if
the same key is reused over multiple files and some portion of
the files is known to the attacker, because 3DES only has
a 64-bit block size.

In my application (digital video) discovery of a block or two of
plaintext is not a major concern. Discovery of the key or of a
significant viewable segment of the plaintext must be prevented. Our
application uses a separate (3-key) 3DES key + IV for each file, and
are using CBC mode.

.

Follow-Ups:
- Re: How long to trust 3DES
  - From: Mike Amling
- Re: How long to trust 3DES
  - From: Guy Fawkes

References:
- How long to trust 3DES
  - From: Alan
- Re: How long to trust 3DES
  - From: Francois Grieu

Prev by Date: Re: Question about bit strength
Next by Date: Re: How long to trust 3DES
Previous by thread: Re: How long to trust 3DES
Next by thread: Re: How long to trust 3DES
Index(es):
- Date
- Thread

Relevant Pages

Re: How long to trust 3DES
... A much more sizable threat is partial decryption, ... In my application discovery of a block or two of ... significant viewable segment of the plaintext must be prevented. ...
(sci.crypt)
Re: How long to trust 3DES
... Alan wrote: ... Discovery of the key or of a ... significant viewable segment of the plaintext must be prevented. ...
(sci.crypt)