Other Directory Sites: SeekWonder | Directory Owners Forum
The following archive was created by hippie-mail 7.98617-22 on Fri Aug 21 1998 - 17:19:06 ADT
Paulo Barreto (pbarreto@nw.com.br)
Thu, 25 Jun 1998 21:29:26 -0300
At 12:02 1998.06.25 -0400, you wrote:
>And how much analysis has been done on Square, compared with, say,
>3DES?
Hmmm... if you really expect an answer, please tell me exactly how much
analysis has been done on 3DES :-)
Seriously, take a look at the Square paper (or at the Rijndael documents).
the whole theory behind Square was distilled from all published analyses of
known ciphers (plus new results by Joan Daemen and Vincent Rijmen). This
way you could almost say that the 3DES analyses are integrated in the
design of Square.
In terms of published papers, the original Square description contains in
fact two works (there's an extra analysis by Lars Knudsen), and David
Wagner has done an unpublished analysis of the Square key schedule
(personal communication; he even pointed out an implementation bug in an
early stage of the algorithm design that would make it weaker).
Furthermore, there are new ciphers (e.g. Twofish) incorporating some of the
principles used in Square.
Not long ago, Eric Young said on this respect that, considering the amount
of published work on, say, FEAL, the lack of such material could be in fact
good news (that is, most analyses on a cipher point out weaknesses). This
obviously does not mean the cipher is secure, but suggests that either
nobody has found any problem with Square, or that it is not receiving much
attention (the Twofish paper hints that the former possibility is more
likely than the later).
Finally, Rijndael is a generalization of Square; being an AES candidate, it
is bound to be heavily cryptanalyzed during the next months.
Cheers,
Paulo.
The following archive was created by hippie-mail 7.98617-22 on Fri Aug 21 1998 - 17:19:06 ADT