1996-04-15 - Re: carrick, Blowfish & the NSA

Header Data

From: Wei Dai <weidai@eskimo.com>
To: “Perry E. Metzger” <perry@piermont.com>
Message Hash: 4c65f7df2ab7f6b70dfdab1e5b87e82b0fc3edc2ab4da2bc82f8224600655689
Message ID: <Pine.SUN.3.93.960414145921.29416C-100000@eskimo.com>
Reply To: <199604141422.KAA05302@jekyll.piermont.com>
UTC Datetime: 1996-04-15 02:02:13 UTC
Raw Date: Mon, 15 Apr 1996 10:02:13 +0800

Raw message

From: Wei Dai <weidai@eskimo.com>
Date: Mon, 15 Apr 1996 10:02:13 +0800
To: "Perry E. Metzger" <perry@piermont.com>
Subject: Re: carrick, Blowfish & the NSA
In-Reply-To: <199604141422.KAA05302@jekyll.piermont.com>
Message-ID: <Pine.SUN.3.93.960414145921.29416C-100000@eskimo.com>
MIME-Version: 1.0
Content-Type: text/plain


On Sun, 14 Apr 1996, Perry E. Metzger wrote:

> At least partially broken, yes. I've forgotten the details. I believe
> they were discussed at Eurocrypt. It may be that with the full number
> of rounds that no one yet has a cryptanalysis but I don't recall and
> it doesn't particularly matter from my perspective.

It doesn't make much sense to condemn an iterated cipher based on attacks
on reduced-round versions.  Any such cipher becomes weak if you use
sufficiently few rounds.  Conversely, many broken ciphers become secure if
you use sufficiently many rounds (in which case they also become too slow
to be useful).  I don't think there are currently any public attacks that
seriously affect the security of Blowfish.

On the other hand, if you ask cryptographers what they would use if they
were not concerned with efficiency, I think most of them would say triple
DES.

Wei Dai

Thread

• Return to April 1996

• Return to “Dave Del Torto <ddt@lsd.com>”
• Return to “Jerry Whiting <jwhiting@igc.apc.org>”
• Return to “K00l Secrets <secret@secret.alias.net>”
• Return to ““Mark M.” <markm@voicenet.com>”
• Return to ““Perry E. Metzger” <perry@piermont.com>”
• Return to “s1113645@tesla.cc.uottawa.ca”
• Return to “SINCLAIR DOUGLAS N <sinclai@ecf.toronto.edu>”

• Return to “Wei Dai <weidai@eskimo.com>”

• 1996-04-14 (Sun, 14 Apr 1996 15:33:58 +0800) - carrick, Blowfish & the NSA - Jerry Whiting <jwhiting@igc.apc.org>
  • 1996-04-14 (Sun, 14 Apr 1996 20:23:19 +0800) - Re: carrick, Blowfish & the NSA - “Perry E. Metzger” <perry@piermont.com>
    • 1996-04-14 (Mon, 15 Apr 1996 00:21:22 +0800) - Re: carrick, Blowfish & the NSA - SINCLAIR DOUGLAS N <sinclai@ecf.toronto.edu>
      • 1996-04-14 (Mon, 15 Apr 1996 00:44:13 +0800) - Re: carrick, Blowfish & the NSA - “Perry E. Metzger” <perry@piermont.com>
        • 1996-04-14 (Mon, 15 Apr 1996 04:34:45 +0800) - Re: carrick, Blowfish & the NSA - “Mark M.” <markm@voicenet.com>
          • 1996-04-14 (Mon, 15 Apr 1996 07:00:23 +0800) - Re: carrick, Blowfish & the NSA - “Perry E. Metzger” <perry@piermont.com>
        • 1996-04-15 (Mon, 15 Apr 1996 10:02:13 +0800) - Re: carrick, Blowfish & the NSA - Wei Dai <weidai@eskimo.com>
          • 1996-04-15 (Mon, 15 Apr 1996 10:57:20 +0800) - Re: carrick, Blowfish & the NSA - “Perry E. Metzger” <perry@piermont.com>
        • 1996-04-16 (Tue, 16 Apr 1996 14:59:27 +0800) - Re: carrick, Blowfish & the NSA - K00l Secrets <secret@secret.alias.net>
      • 1996-04-14 (Mon, 15 Apr 1996 04:58:50 +0800) - Re: carrick, Blowfish & the NSA - s1113645@tesla.cc.uottawa.ca
        • 1996-04-14 (Mon, 15 Apr 1996 06:52:32 +0800) - Re: carrick, Blowfish & the NSA - “Perry E. Metzger” <perry@piermont.com>
      • 1996-04-16 (Tue, 16 Apr 1996 23:53:20 +0800) - Re: carrick, Blowfish & the NSA - Dave Del Torto <ddt@lsd.com>
    • 1996-04-14 (Mon, 15 Apr 1996 05:05:27 +0800) - Re: carrick, Blowfish & the NSA - s1113645@tesla.cc.uottawa.ca
  • 1996-04-15 (Mon, 15 Apr 1996 09:14:21 +0800) - Re: carrick, Blowfish & the NSA - Wei Dai <weidai@eskimo.com>