David Honig wrote: > The *only* reason for using DES (or 3DES) is legacy systems, ie, backwards > interop. IPSec stacks (like *all* crypto things) should come with, and > negotiate to use, better crypto when they can. Which should be most of the > time, given how new both sides of most links will be. (Most of the > computers ever built are alive today..) This is not true. DES is the most intensely scrutinized block cipher available to us. I would think most security professionals would trust 3DES more than any of the AES candidates, for instance, which have received much less analysis. For now, many people accept the lesser performance of 3DES in exchange for the reduced risk. Relatively inexpensive 3DES IPSEC hardware is readily available which makes performance less of a concern. andrew
- Re: NSA back doors in encr... Rick Smith
- Re: NSA back doors in encr... Arnold G. Reinhold
- Re: NSA back doors in encr... Dan Geer
- Re: NSA back doors in encr... Steve Reid
- Re: NSA back doors in encr... Dave Emery
- Re: NSA back doors in encr... John Gilmore
- Re: NSA back doors in encr... eli+
- Re: NSA back doors in encrypti... David Jablon
- Re: NSA back doors in encrypti... Alan Olsen
- Re: NSA back doors in encrypti... David A. Wagner
- Re: Critics blast Windows 2000's quiet use ... Andrew Loewenstern
- Re: Critics blast Windows 2000's quiet use of D... Sandy Harris
- Re: Critics blast Windows 2000's quiet use of D... John Gilmore
- Re: Critics blast Windows 2000's quiet use of DES in... Paul Crowley
- Re: Critics blast Windows 2000's quiet use of D... Derek Atkins
- Re: Critics blast Windows 2000's quiet use of DES in... Steven M. Bellovin
- Re: Critics blast Windows 2000's quiet use of DES in... William Allen Simpson
- Re: Critics blast Windows 2000's quiet use of DES in... Steven M. Bellovin
- Re: Critics blast Windows 2000's quiet use of DES in... Steven M. Bellovin
