[23745] in Kerberos

home help back first fref pref prev next nref lref last post

strength of encryption types

daemon@ATHENA.MIT.EDU (Rahul.Jain@wellsfargo.com)
Thu Apr 21 14:40:47 2005

content-class: urn:content-classes:message
MIME-Version: 1.0
Date: Thu, 21 Apr 2005 13:40:04 -0500
Message-ID: <C4E630F8313DF14C982F9FC7CCCF2A2A2FE4AF@msgswbmnmsp18.wellsfargo.com>
From: <Rahul.Jain@wellsfargo.com>
To: <kerberos@mit.edu>
Content-Type: text/plain;
	charset="us-ascii"
Errors-To: kerberos-bounces@mit.edu
Content-Transfer-Encoding: 8bit

How strong is 3DES with MD5 without HMAC or key derivation?
Specifically, is MD5 in this situation much use without HMAC given the
recent attacks found? If not, how easy is it to modify an encrypted 3DES
message so that it contains different content? Is that attack comparable
to cracking the key? Would 3DES with SHA1 without HMAC or KD be
significantly better (IIUC, it would be an increase in the strength of
the hash from an effective 2**24 to 2**69... or is that to 2**106... in
that case, what is the strength of finding MD5 collisions to a given
message)?

 

TIA,

Rahul Jain

________________________________________________
Kerberos mailing list           Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos

home help back first fref pref prev next nref lref last post