Could you describe this "meet-in-the-middle" attack on the 3-DES?
Nicolas Roumiantzeff.
-----Message d'origine-----
De : Ben Laurie <[EMAIL PROTECTED]>
À : [EMAIL PROTECTED] <[EMAIL PROTECTED]>
Date : vendredi 12 novembre 1999 20:13
Objet : Re: Compiling OpenSSL without 3DES
>Nicolas Roumiantzeff wrote:
>>
>> > 3DES has an effective keylength of 112 bits.
>>
>> I don't think so:
>>
>> A typicall Tripple DES has an effective key length of 112 bits as it uses
>> two different 56-bit keys A and B:
>> TrippleDesEncrypt (A, B, X) = DesEncrypt (A, DesDecrypt (B, DesEncrypt
(A,
>> X)))
>>
>> But the SSL implementation is slightly different from the typical Triple
DES
>> and uses 3 different keys of 8 bytes each (56 bits effective) for a total
>> effective key length of 168 bits.
>
>Nope. The meet-in-the-middle attack reduces that to 112 bits.
>
>Cheers,
>
>Ben.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
