[40060] in North American Network Operators' Group
Re: telnet vs ssh on Core equipment , looking for reasons why ?
daemon@ATHENA.MIT.EDU (Valdis.Kletnieks@vt.edu)
Tue Jul 31 18:11:53 2001
Message-Id: <200107312211.f6VMATw28760@foo-bar-baz.cc.vt.edu>
To: Roeland Meyer <rmeyer@mhsc.com>
Cc: nanog@merit.edu
In-Reply-To: Your message of "Tue, 31 Jul 2001 14:59:25 PDT."
<EA9368A5B1010140ADBF534E4D32C728025AA5@condor.mhsc.com>
From: Valdis.Kletnieks@vt.edu
Mime-Version: 1.0
Content-Type: multipart/signed; boundary="==_Exmh_544007662P";
micalg=pgp-sha1; protocol="application/pgp-signature"
Content-Transfer-Encoding: 7bit
Date: Tue, 31 Jul 2001 18:10:29 -0400
Errors-To: owner-nanog-outgoing@merit.edu
--==_Exmh_544007662P
Content-Type: text/plain; charset=us-ascii
On Tue, 31 Jul 2001 14:59:25 PDT, Roeland Meyer said:
> You are probably aware, but EFF published the DES crack. I understand that
> it is now an issue of cracking DES in less than 12 hours. 3DES is better
> but it only amounts to DES with a 128-bit key.
Actually, 3DES has a 112 bit effective key. However, although that's only
double the key length, the *difficulty* is a bit more than twice as much.
Assuming a brute-force of a 56-bit key in 12 hours, then a 112 bit key
will take (given the same resources) 2**56 * 12 hours, which is about
864,691,128,455,135,232 hours which works out to 98,709,032,928,668 years,
which is about 4,000 times the current estimated age of the universe.
This analysis of course assumes that the EFF crack is a brute-force,
and not a result of differential cryptanalysis or exploitation of a
flaw in the DES S-boxes or similar. Schneier's 'Applied Cryptography'
lists an attack that's around 2**47 rather than 2**56, assuming you can
get the victim to encrypt several gigabytes of text of your choosing with
his key....
--
Valdis Kletnieks
Operating Systems Analyst
Virginia Tech
--==_Exmh_544007662P
Content-Type: application/pgp-signature
-----BEGIN PGP SIGNATURE-----
Version: PGP 6.5.8
Comment: Exmh version 2.5 07/09/2001
iQA/AwUBO2cs1XAt5Vm009ewEQKtMgCfXDjwtc6hZhxEJ3Rx9THAkZkhuGoAnjZ2
xZ18afrp3L0ya2eaBmj9yBHP
=lx03
-----END PGP SIGNATURE-----
--==_Exmh_544007662P--
