[4997] in cryptography@c2.net mail archive
Re: so why is IETF stilling adding DES to protocols? (Re: It's
daemon@ATHENA.MIT.EDU (David Honig)
Sat Jun 26 15:48:12 1999
Date: Sat, 26 Jun 1999 10:50:19 -0700
To: "David G. Koontz" <koontz@ariolimax.com>, Adam Back <aba@dcs.ex.ac.uk>
From: David Honig <honig@sprynet.com>
Cc: jis@mit.edu, rah@shipwright.com, dcsb@ai.mit.edu, cryptography@c2.net,
cypherpunks@cyberpass.net, mleech@nortel.ca
In-Reply-To: <3774E70F.76750B63@ariolimax.com>
At 07:43 AM 6/26/99 -0700, David G. Koontz wrote:
>DES isn't secure how? Certainly it isn't absolutely secure, and
>probably never has been. Is it secure enough to keep a cracker from
>grabbing passwords flying by? In most cases yes. The effort for
>individuals to break DES is significant in terms of hardware, money
>and time.
PC week has a description of DARPA's requirements for a COTS
DARPA-managed 50-user VPN with remote capabilities (and a 24/7 help
desk...) "DARPA requires 128 bit keys, because security is more important
than standards compliance".
dh
