[Ach] about the 3DES thing again
christian mock
cm at coretec.at
Tue Dec 3 15:04:26 CET 2013
On Tue, Dec 03, 2013 at 02:58:37PM +0100, Adi Kriegisch wrote:
> In my opinion it is the main target group (sysadmins) that just see the
> "168bit" in OpenSSL output, see the "128bit or more" recommendation and
> start using 3DES or assume a mistake in the paper because they (1) do not
> know that 3DES actually provides 112bit of security at the moment and (2)
> consists of 64bit primitives that probably warant for even more fun.
> Therefor I'd just mention 3DES explicitly...
+1
cm.
--
Christian Mock Wiedner Hauptstr. 15
Senior Security Engineer 1040 Wien
CoreTEC IT Security Solutions GmbH +43-1-5037273
FN 214709 z
.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.
CoreTEC: Web Application Audit - Damit so etwas nicht passiert!
http://heise.de/-1260559
.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.-.
More information about the Ach
mailing list