[848] in cryptography@c2.net mail archive
usage of triple-DES
daemon@ATHENA.MIT.EDU (Rodney Thayer)
Thu May 15 22:04:27 1997
Date: Thu, 15 May 1997 19:49:04 -0400
To: cryptography@c2.net
From: Rodney Thayer <rodney@sabletech.com>
-----BEGIN PGP SIGNED MESSAGE-----
I'm configuring Triple DES for use in IPsec. I get the
impression that most but not all Triple-DES implementations use
TWO keys (2x56 bits, padded with parity to 128 bits) and ONE IV
(64 bits.) This matches the description in Schneier's book
(Encrypt with Key1, Decrypt with Key2, Encrypt with Key1.)
However, later in the second edition he recommends the use of
THREE keys not two. Also I see <a major cryptographic
technology vendor> allows for "24 bytes" (I take this means
three keys) in their Triple-DES EDE software. I'm interested
in implementing but polite manner. I think I should use two
keys. Any comments? Anyone else looking at Triple-DES for IPsec?
-----BEGIN PGP SIGNATURE-----
Version: 4.0 Business Edition
iQCVAgUBM3ug48KmlvJNktGxAQHVBwP+Kol9yv8YATHeS7EsCtUu0YLGENbee8r7
NW/j9vSzkWcV1CjkYx6y8cJNuA9SAHDGP+jJhLCxi42s1Rf0YULH7ldVLg90acx5
h3mDq9w8r56AIB/n4gK55tXmkXtMU0/7jFXTEg9kPpoj3QEZ1wBV8HUmiLEizk3y
WueVk9XCETY=
=Sj0J
-----END PGP SIGNATURE-----
--------
Rodney Thayer <rodney@sabletech.com>
PGP: BB1B6428 409129AC 076B9DE1 4C250DD8
