Re: What benefit would there be in using triple RC4-40?

Andy Brown (Andy.Brown@nexor.co.uk)
Tue, 25 Aug 1998 09:38:02 +0100

• Next message: Ian Brown: "Re: Encryption is like a locked suitcase"
• Previous message: Mok-Kong Shen: "Re: Rationale of design of my algorithm WEAK3"
• Maybe in reply to: Mok-Kong Shen: "Rationale of design of my algorithm WEAK3"
• Next in thread: David Honig: "Re: What benefit would there be in using triple RC4-40?"
• Reply: David Honig: "Re: What benefit would there be in using triple RC4-40?"

Michael Paul Johnson wrote:

> Of course, for the above to be true, you would have to encrypt individual
> blocks, not files where known plaintext headers may be inserted, which
> would defeat the key strengthening. If the MS-CAPI inserts such headers,
> then encrypting 3 times would only triple the effort needed to crack the
> message, not increase the difficulty of cracking by 2^80. Check what the
> CAPI does carefully.

The "strength" of a CAPI application seems to rest entirely upon the security
of the particular Cryptographic Service Provider (CSP) that you choose to use.
All you lucky people inside the USA have a choice of many, including Fortezza
and even a biometric fingerprint version. Problem is, outside the USA we are
stuck with only the default MS provider which gets you 40 bit RC4/RC2, 512 bit
RSA and your private keys stored in the registry. Unpleasant.

Thanks for all the advice, I'm more interested than ever in finding out the
security of multiple applications of a stream cipher now just as a matter of
curiosity.

- Andy

• Next message: Ian Brown: "Re: Encryption is like a locked suitcase"
• Previous message: Mok-Kong Shen: "Re: Rationale of design of my algorithm WEAK3"
• Maybe in reply to: Mok-Kong Shen: "Rationale of design of my algorithm WEAK3"
• Next in thread: David Honig: "Re: What benefit would there be in using triple RC4-40?"
• Reply: David Honig: "Re: What benefit would there be in using triple RC4-40?"