1998-01-30 - Re: Chaining ciphers
Header Data
From: ghio@temp0201.myriad.ml.org (Matthew Ghio)
To: cypherpunks@cyberpass.net
Message Hash: 682921377c411954ba64a33b73c32ea1d9b4d0556f9d4fc7157401976f43623a
Message ID: <199801301645.LAA15149@myriad>
Reply To: <9801291747.AA26773@mentat.com>
UTC Datetime: 1998-01-30 16:56:06 UTC
Raw Date: Sat, 31 Jan 1998 00:56:06 +0800
Raw message
From: ghio@temp0201.myriad.ml.org (Matthew Ghio)
Date: Sat, 31 Jan 1998 00:56:06 +0800
To: cypherpunks@cyberpass.net
Subject: Re: Chaining ciphers
In-Reply-To: <9801291747.AA26773@mentat.com>
Message-ID: <199801301645.LAA15149@myriad>
MIME-Version: 1.0
Content-Type: text/plain
Jim Gillogly wrote:
> Yes, that's definitely better for high-confidence long-term archival
> stuff than relying on one cipher. Carl Ellison's suggestion was DES |
> tran | nDES | tran | DES, where "tran" is an unkeyed large-block
> transposition.
One other possibility is to encrypt with plaintext block chaining, then
superencrypt it PBC in reverse order, starting with the last block first.
An attacker would thus have to decrypt the entire message before knowing
whether the key was correct or not.
> One word of caution (which should be obvious, but can't hurt to repeat it):
> if you chain ciphers (e.g. DES | IDEA | 3DES | CAST | Blowfish), be sure to
> use separate keys for each of them; otherwise breaking the last one will
> give the key to the whole lot.
Only if the cryptanalyst knows that the decryption of the last one was
correct, which shouldn't be possible without also decrypting all the other
layers.
Thread
Return to January 1998
- Return to “Asgaard <asgaard@cor.sos.sll.se>”
- Return to “Bill Stewart <bill.stewart@pobox.com>”
- Return to “ghio@temp0201.myriad.ml.org (Matthew Ghio)”
- Return to “jim@mentat.com (Jim Gillogly)”
- Return to “Jon Leonard <jleonard@divcom.umop-ap.com>”
Return to “Tim May <tcmay@got.net>”
- 1998-01-29 (Fri, 30 Jan 1998 01:57:25 +0800) - Re: Chaining ciphers - jim@mentat.com (Jim Gillogly)
- 1998-01-29 (Fri, 30 Jan 1998 02:51:26 +0800) - Persistent URLs Considered Useful - Tim May <tcmay@got.net>
- 1998-01-30 (Fri, 30 Jan 1998 10:26:03 +0800) - Re: Persistent URLs Considered Useful - Asgaard <asgaard@cor.sos.sll.se>
- 1998-01-29 (Fri, 30 Jan 1998 04:16:56 +0800) - Finding the Cyphernomicon - Bill Stewart <bill.stewart@pobox.com>
- 1998-01-29 (Fri, 30 Jan 1998 05:44:28 +0800) - Re: Persistent URLs Considered Useful - Jon Leonard <jleonard@divcom.umop-ap.com>
- 1998-01-30 (Sat, 31 Jan 1998 00:56:06 +0800) - Re: Chaining ciphers - ghio@temp0201.myriad.ml.org (Matthew Ghio)
- 1998-01-29 (Fri, 30 Jan 1998 02:51:26 +0800) - Persistent URLs Considered Useful - Tim May <tcmay@got.net>