[23745] in Kerberos
strength of encryption types
daemon@ATHENA.MIT.EDU (Rahul.Jain@wellsfargo.com)
Thu Apr 21 14:40:47 2005
content-class: urn:content-classes:message
MIME-Version: 1.0
Date: Thu, 21 Apr 2005 13:40:04 -0500
Message-ID: <C4E630F8313DF14C982F9FC7CCCF2A2A2FE4AF@msgswbmnmsp18.wellsfargo.com>
From: <Rahul.Jain@wellsfargo.com>
To: <kerberos@mit.edu>
Content-Type: text/plain;
charset="us-ascii"
Errors-To: kerberos-bounces@mit.edu
Content-Transfer-Encoding: 8bit
How strong is 3DES with MD5 without HMAC or key derivation?
Specifically, is MD5 in this situation much use without HMAC given the
recent attacks found? If not, how easy is it to modify an encrypted 3DES
message so that it contains different content? Is that attack comparable
to cracking the key? Would 3DES with SHA1 without HMAC or KD be
significantly better (IIUC, it would be an increase in the strength of
the hash from an effective 2**24 to 2**69... or is that to 2**106... in
that case, what is the strength of finding MD5 collisions to a given
message)?
TIA,
Rahul Jain
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos