[149080] in cryptography@c2.net mail archive
Re: [Cryptography] Boing Boing pushing an RSA Conference boycott
daemon@ATHENA.MIT.EDU (Bill Stewart)
Thu Jan 16 09:15:27 2014
X-Original-To: cryptography@metzdowd.com
Date: Wed, 15 Jan 2014 22:26:37 -0800
To: Phillip Hallam-Baker <hallam@gmail.com>,
"cryptography@metzdowd.com" <cryptography@metzdowd.com>
From: Bill Stewart <bill.stewart@pobox.com>
In-Reply-To: <CAMm+LwjR-NoXBtMEu1snVYqBKqGeRm+PS7KnVa4uUgA5y0p_mQ@mail.g
mail.com>
Errors-To: cryptography-bounces+crypto.discuss=bloom-picayune.mit.edu@metzdowd.com
At 12:48 PM 1/15/2014, Phillip Hallam-Baker wrote:
>What then should we do about all the folk clinging to 3DES? How
>about the people who stuck with MD5? How about the people who have
>not junked SHA-1?
Ignoring Phill's perfectly reasonable main point, what's wrong with 3DES?
Sure, it's clunky, takes lots of bit-twiddling, is a good bit slower
and larger than AES, and only gives you ~112 bits of security for
your 168 bits of keys, but is there anything wrong with it other than
being not as good as some of the alternatives? (Ok, and maybe a bit
of power analysis risk, depending on your implementation.) It's not
like MD5 where there are theoretical attacks that make it much weaker?
_______________________________________________
The cryptography mailing list
cryptography@metzdowd.com
http://www.metzdowd.com/mailman/listinfo/cryptography
