1996-08-21 - Re: Netscape 3.0 and encryption choices

Header Data

From: frantz@netcom.com (Bill Frantz)
To: Ted Cabeen <cypherpunks@toad.com
Message Hash: b3e346ea9cb50fa3b230134fca0c107e8baa71246b676e84d74e079539e74601
Message ID: <199608201820.LAA22622@netcom8.netcom.com>
Reply To: N/A
UTC Datetime: 1996-08-21 00:07:02 UTC
Raw Date: Wed, 21 Aug 1996 08:07:02 +0800

Raw message

From: frantz@netcom.com (Bill Frantz)
Date: Wed, 21 Aug 1996 08:07:02 +0800
To: Ted Cabeen <cypherpunks@toad.com
Subject: Re: Netscape 3.0 and encryption choices
Message-ID: <199608201820.LAA22622@netcom8.netcom.com>
MIME-Version: 1.0
Content-Type: text/plain


At  1:04 AM 8/20/96 -0700, Ted Cabeen wrote:
>In Netscape 3.0, the program allows the user to specify which encryption
>standards to allow connections with.  It allows encryption with 128-bit RC4,
>128-bit RC2, and 156-bit(I think)3DES.  Of these three, which would be the
>most secure method?

The gereral consensus of the experts is that 168 bit 3DES is the best
choice.  DES has been well studied, 168 bit keys are large enough to be
safe, and the ITAR forbids its export.  (ITAR also forbids export of 128
bit cyphers as well, but ITAR is the only NSA approved reputation agent for
crypto, so we use what we have.)


-------------------------------------------------------------------------
Bill Frantz       | Cave ab homine unius lebri | Periwinkle -- Consulting
(408)356-8506     |  [Beware the man of one    | 16345 Englewood Ave.
frantz@netcom.com |   book]  - Anonymous Latin | Los Gatos, CA 95032, USA







Thread