Re: Is 3DES Broken?

2005-02-07 Thread Jerrold Leichter
| I think you meant ECB mode? | | No, I meant CBC -- there's a birthday paradox attack to watch out for. | | Yep. In fact, there's a birthday paradox problem for all the standard | chaining modes at around 2^{n/2}. | | For CBC and CFB, this ends up leaking information about the XOR of

Re: Is 3DES Broken?

2005-02-07 Thread Jerrold Leichter
| No, I meant CBC -- there's a birthday paradox attack to watch out for. | | | Yep. In fact, there's a birthday paradox problem for all the standard | chaining modes at around 2^{n/2}. | For CBC and CFB, this ends up leaking information about the XOR of a couple | plaintext blocks

Re: Simson Garfinkel analyses Skype - Open Society Institute

2005-02-07 Thread Dan Kaminsky
Actually it's not that bad: using SIP, the RTP packets can be protected by SRTP (RFC3711, with an opensource implementation from Cisco at http://srtp.sourceforge.net/ ) SRTP...heh. Take a look at RFC3711 for a second. Specification of a key management protocol for SRTP is out of scope here.

NIST moves to stronger hashing

2005-02-07 Thread R.A. Hettinga
http://www.fcw.com/print.asp Federal Computer Week Monday, February 7, 2005 NIST moves to stronger hashing BY Florence Olsen Published on Feb. 7, 2005 Federal agencies have been put on notice that National Institute of Standards and Technology officials plan to phase out a widely

link-layer encryptors for Ethernet?

2005-02-07 Thread Steven M. Bellovin
Are there any commercial link-layer encryptors for Ethernet available? I know that Xerox used to make them, way back when, but are there any current ones, able to deal with current speeds (and connectors)? --Prof. Steven M. Bellovin, http://www.cs.columbia.edu/~smb

Quantum crypto firm charts way to mainstream

2005-02-07 Thread R.A. Hettinga
http://news.zdnet.com/2102-1009_22-5564288.html?tag=printthis Quantum crypto firm charts way to mainstream By Michael Kanellos URL: http://news.zdnet.com/2100-1009_22-5564288.html Magiq Technologies is creating a new line of products this year that it says could help make quantum

MD5 comes in for further criticism

2005-02-07 Thread R.A. Hettinga
http://www.techworld.com/storage/news/index.cfm?NewsID=3081Page=1pagePos=11 Techworld.com 07 February 2005 More experts warn of CAS arrays risks MD5 comes in for further criticism By Lucas Mearian, Computerworld (US) More security experts are warning against the use of the flawed hashing

SHA-1 passe' for US Fed

2005-02-07 Thread dan
http://www.geocities.com/khlim777_my/b777cockpit4r.jpg --dan - The Cryptography Mailing List Unsubscribe by sending unsubscribe cryptography to [EMAIL PROTECTED]

CodeCon Reminder

2005-02-07 Thread Len Sassaman
e'd like to remind those of you planning to attend this year's event that CodeCon is fast approaching. CodeCon is the premier event in 2005 for application developer community. It is a workshop for developers of real-world applications with working code and active development projects. Past

RSA Conference, and BA Cypherpunks

2005-02-07 Thread Trei, Peter
Once again, the RSA Conference is upon us, and many of the corrospondents on these lists will be in San Francisco. I'd like to see if anyone is interested in getting together. We've done this before. At past conferences, we've had various levels of participation, from 50 down to 3. Since the

[fc-announce] Transportation, Taxes, and Conference Events

2005-02-07 Thread R.A. Hettinga
--- begin forwarded text User-Agent: Microsoft-Entourage/11.1.0.040913 From: Stuart E. Schechter [EMAIL PROTECTED] To: [EMAIL PROTECTED] [EMAIL PROTECTED] Subject: [fc-announce] Transportation, Taxes, and Conference Events Sender: [EMAIL PROTECTED] Date: Mon, 07 Feb 2005 15:12:11 -0500

Re: link-layer encryptors for Ethernet?

2005-02-07 Thread Chris Kuethe
http://www.google.com/search?q=ethernet+link+encryptor says that there are. There's even a widget that supposedly runs up to gigabit. http://www.atmedia.de/english/news.html I'm enough of a freenix zealot though that I'd build one out of a couple of opteron boxen with gig ether cards and run

Re: Is 3DES Broken?

2005-02-07 Thread Jon Callas
On 4 Feb 2005, at 10:51 AM, Greg Rose wrote: I'm surprised that no-one has said that ECB mode is unsafe at any speed. Because if they did, some smartass would chime in and say that ECB mode is perfectly fine at some speeds. For example, you could safely encrypt one bit in ECB mode,