-----BEGIN PGP SIGNED MESSAGE----- What crypto functions are considered modern and usable? The list I have right now is: RSA IDEA DES 3DES RC4 RC5 BLOWFISH MD4 MD5 (and FLAMINGO, a trivial test case, which consists of xor'ing every 8 chars with "flamingo".) Pointers to code for any other schemes will be greatly appreciated. Thanks, -- Todd - --- [This message has been signed by an auto-signing service. A valid signature means only that it has been received at the address corresponding to the signature and forwarded.] -----BEGIN PGP SIGNATURE----- Version: 2.6.2 Comment: Gratis auto-signing service iQBFAwUBLxL+YSoZzwIn1bdtAQGmbgF+Il9/8OU3smhe+DqhKBX5a51N9H15/ElN 4ByTAiKfNjXu21HWyV29kSxEBofo5003 =j55J -----END PGP SIGNATURE-----
"L. Todd Masco" says:
What crypto functions are considered modern and usable? The list I have right now is:
RSA IDEA DES 3DES RC4 RC5 BLOWFISH MD4 MD5
I wouldn't use BLOWFISH. MD4 is flawed -- and its a hash function, not a crypto function (as is MD5). RC5 is very, very new. RC4 hasn't been well studied in the open literature yet, though it is quite promising. .pm
I wouldn't use BLOWFISH.
Why?
MD4 is flawed -- and its a hash function, not a crypto function (as is MD5).
I'm curious - do you view one-way hash functions as nonessential for crypto? -jon ( --------[ Jonathan D. Cooper ]--------[ entropy@intnet.net ]-------- ) ( PGP 2.6.2 keyprint: 31 50 8F 82 B9 79 ED C4 5B 12 A0 35 E0 9B C0 01 ) ( home page: http://taz.hyperreal.com/~entropy/ ]---[ Key-ID: 4082CCB5 )
On Jan 15, 10:35am, Jonathan Cooper wrote:
I wouldn't use BLOWFISH.
Why?
Well, I wasn't the original person who said that they wouldn't use it, but I would agree. It's too new. It looks very good so far, but until it's been through a lot more analysis than Blowfish has received so far, it is too much of an unknown quantity. Ian.
Well, I wasn't the original person who said that they wouldn't use it, but I would agree. It's too new. It looks very good so far, but until it's been through a lot more analysis than Blowfish has received so far, it is too much of an unknown quantity.
Ah. Incidentally, I wasn't just being a wiseass when I asked why, I wanted to know. Has no one significantly cryptanalysed Blowfish yet? -jon ( --------[ Jonathan D. Cooper ]--------[ entropy@intnet.net ]-------- ) ( PGP 2.6.2 keyprint: 31 50 8F 82 B9 79 ED C4 5B 12 A0 35 E0 9B C0 01 ) ( home page: http://taz.hyperreal.com/~entropy/ ]---[ Key-ID: 4082CCB5 )
On Sun, 15 Jan 1995, Jonathan Cooper wrote:
Has no one significantly cryptanalysed Blowfish yet?
Bruce Schneier is running a contest. First person to come up with a significant attack against full Blowfish (no partial round variants) gets $1000. The contest ends in April. Last time I heard, he had gotten a very interesting attack from someone, but not a complete one. He plans to reveal the results after the contest ends in April. -mbh- -- Michael Handler <grendel@netaxs.com> Civil Liberty Through Complex Mathematics Philadelphia, PA PGP Key ID FC031321 Print: 9B DB 9A B0 1B 0D 56 DA 61 6A 57 AD B2 4C 7B AF "Toi qui fais au proscrit ce regard calme et haut" -- Baudelaire * Skotoseme
-----BEGIN PGP SIGNED MESSAGE----- - -----BEGIN PGP SIGNED MESSAGE----- In article <9501161145.ZM27648@wiley.sydney.sgi.com>, Ian Farquhar <ianf@sydney.sgi.com> wrote:
Well, I wasn't the original person who said that they wouldn't use it, but I would agree. It's too new. It looks very good so far, but until it's been through a lot more analysis than Blowfish has received so far, it is too much of an unknown quantity.
That's okay. So's my GUCAPI code (suggestions of a better name are quite welcome. I'm considering changing the name to the Hastur Crypto Toolkit, purely on aesthetics). BTW, pointers to public domain code for each of these ciphers/hashes would be reatly appreciated. The crypto part of the library is really going to just be a collection of what's already available from elsewhere; the main work is in genericizing the IO and the key management functions and in making life difficult for people who don't follow the interface properly. Other than that, the only other real work is getting a reasonably portable source of random numbers working as a default random source. I'll also be distributing an ITAR-friendly "bones" version with instructions on how to add ciphers. Are PRNGs like BBS covered by ITAR? - - -- Todd Masco | "life without caution/ the only worth living / love for a man/ cactus@hks.net | love for a woman/ love for the facts/ protectless" - A Rich Cactus' Homepage - -----BEGIN PGP SIGNATURE----- Version: 2.6.2 iQCVAwUBLxqVvxNhgovrPB7dAQGStwP7B9+lX/2KVxs6Zq6u4TNENGFJ6aW4Sydq 7RgJJo5YzKpyQFvzRB1FYYLWKJNIaMbPXrm6mLPLXzj7dShWDngQh3m+K+VP3qU3 IEtNsovJuXqvxWYzA4uH4c1SCAV1DDkjlAjx/Ix884cXbRmEJjpnfiUCrItEf42B Nz3cwcILX4o= =M18o - -----END PGP SIGNATURE----- - --- [This message has been signed by an auto-signing service. A valid signature means only that it has been received at the address corresponding to the signature and forwarded.] -----BEGIN PGP SIGNATURE----- Version: 2.6.2 Comment: Gratis auto-signing service iQBFAwUBLxrRGSoZzwIn1bdtAQGfUAF9F0XSAuKnH+jJopAz02NYJmvA271oGq+A 7YSny6PSNLLK5wncl6lnbM0Rr3eQ58cf =8qA2 -----END PGP SIGNATURE-----
What crypto functions are considered modern and usable? The list I have right now is:
RSA IDEA DES 3DES RC4 RC5 BLOWFISH MD4 MD5
(and FLAMINGO, a trivial test case, which consists of xor'ing every 8 chars with "flamingo".)
Pointers to code for any other schemes will be greatly appreciated.
You might want to include LUC, even though it is fairly new and extremely cumbersome to implement (though, I would say, not outright unusable). Among symmetric ciphers, there's GOST. And I'd count SHA as a reliable hash function. -- Mark Chen chen@intuit.com 415/329-6913 finger for PGP public key D4 99 54 2A 98 B1 48 0C CF 95 A5 B0 6E E0 1E 1D
On Jan 12, 1:21pm, Mark Chen wrote:
Among symmetric ciphers, there's GOST.
Using which S-boxes though? Matt posted a set a while ago, although I suspect they were the ones the Soviet public got, and probably not overly secure. Add the latest (91 I think) version LOKI to the list. Only a 64 bit key, but still not bad, reasonably well studied, and free. Ian.
participants (7)
-
cactus@seabsd.hks.net -
chen@intuit.com -
Ian Farquhar -
Jonathan Cooper -
L. Todd Masco -
Michael Handler -
Perry E. Metzger