> So, if I have ciphers A, B and C, and a way to combine them into one > symmetric cpher that is at least as strong as the strongest among > them, I could use this combined cipher for somewhat secure > communication as long as at least one of A, B, C is not broken, even > if I do not know which ones are broken.
Or you could just use 3DES. Reposted from the last time was wondering if anything had been broken in the OpenPGP suite: ===== I have said this many times in the past; apparently I need to say it again. "3DES has been turning brilliant cryptanalysts into burned-out alcoholic wrecks for over thirty years." Nothing in the OpenPGP suite comes anywhere near to the safety provided by 3DES. Nothing even comes *close*. Assuming your adversary has access to more computing power than exists in the entire world, 3DES offers "only" 112 bits of security; for realistic assumptions about computing power, 3DES offers the full 168 bits. 3DES is ugly, awkward, ungainly, slow, and it has all the aesthetic appeal of the Socialist Realism school of art. It is *awful*. And yet, it keeps on going, completely impervious to the last three decades of cryptanalysis. It reminds me quite a lot of the coelacanth -- a fish that was found in the fossil record 400 million years ago, and still can be found swimming in the oceans today. If you look at a coelacanth it just looks primitive, unevolved, and strangely frightening. It has survived the last 400 million years of Nature's attempts at killing it. It commands respect and admiration, even while at the same time giving vague feelings of revulsion. 3DES is our coelacanth. http://outlookcolumbus.com/wp-content/uploads/2013/02/coelacanth1.jpg
signature.asc
Description: OpenPGP digital signature
_______________________________________________ Gnupg-users mailing list [email protected] http://lists.gnupg.org/mailman/listinfo/gnupg-users
