Big Brother Awards
quintessenz search  /  subscribe  /  upload  /  contact  
/q/depesche *
/kampaigns
/topiqs
/doquments
/contaqt
/about
/handheld
/subscribe
RSS-Feed Depeschen RSS
Hosted by NESSUS
<<   ^   >>
Date: 1998-07-21

DES Crack: Kaum Kosten pro ge/knackten Key


-.-. --.- -.-. --.- -.-. --.- -.-. --.- -.-. --.- -.-. --.-

q/depesche 98.7.21/2
updating 98.7.18/2

DES Crack: Kaum Kosten pro ge/knackten Key

Nicht einmal 700 Dollar kostet jeder Versuch, einen 56bit
DES/Key zu knacken, hat crypto/wizard Robert Hettinga
ausgerechnet.
Sein Fazit: DES ist tot.

Überall in Europa hält man DES immer noch für einen
Standard, der e-commerce/tauglich ist.

Was davor war: Die Electronic Frontier Foundation hat um
250.000 Dollar ein komplettes Set entwickelt, das es
ermöglicht, jeden DES Schlüssel sereien/maessig innerhalb
von drei Tagen aufzuknacken.


-.-.- --.- -.-.- --.- -.-.- --.-
Robert Hettinga <rah@shipwright.com> wrote:

$684.93 is the cost of snakeoil.

That's how much it costs to break a DES key right now.

Take $250,000, divide it by 2, and that gives you the
amortized cost of Gilmore's DES cracker over a single
"half-life", one iteration of Moore's Law. Divide that $125k
by the year and a half that half-life takes (365*1.5), and
multiply it by three days, and you get the now proven,
*demonstrated* cost of a broken DES key, which is $684.93.
Modulo the percentage of keyspace searched when the Gilmore
hit paydirt, whatever that was.
$684.93
Not much, is it?
The cost of anything is the foregone alternative.

And, of course, that cost falls by half every 18 months.
And, of course, we haven't even looked at economies of
scale, yet, have we? National technical means, and all that.

So, once again, I repeat: as of last week, DES *is*
snakeoil, no matter its venerable pedigree. (See my .sig,
below, to see what I think about venerable ideas.)

So, anyone who sells DES in an application requiring *any*
serious security, *especially* for commercial financial
operations, is selling snakeoil. It's that simple.

Barring some kind of cryptanalytic prestidigitation, 3DES
will probably work fine, because it has a decent keyspace,
which DES doesn't have. And, note, I didn't say anything bad
about 3DES, because it's apparently strong enough for that
reason alone.

But, Ladies and Germs, Boys and Girls, DES itself is now
"DED".
It is "kid sister" code. It has "X"es for eyeballs. It is
defunct. It is an ex-protocol.
May it rest in peace.

relayed by m.grinner@mail.gis.at. mucho tnx.
-.-.- --.- -.-.- --.- -.-.- --.-
TIP
Chat mit Hermann Nitsch, heute ab 16.00
http://www.nitsch.org
-.-.- --.- -.-.- --.- -.-.- --.-

- -.-. --.- -.-. --.- -.-. --.- -.-. --.- -.-. --.- -.-. --.-
edited by
published on: 1998-07-21
comments to office@quintessenz.at
subscribe Newsletter
- -.-. --.- -.-. --.- -.-. --.- -.-. --.- -.-. --.- -.-. --.-
<<   ^   >>
Druck mich

BigBrotherAwards


Eintritt zur Gala
sichern ...



25. Oktober 2023
#BBA23
Big Brother Awards Austria
 CURRENTLY RUNNING
q/Talk 1.Juli: The Danger of Software Users Don't Control
Dr.h.c. Richard Stallman live in Wien, dem Begründer der GPL und des Free-Software-Movements
 
 !WATCH OUT!
bits4free 14.Juli 2011: OpenStreetMap Erfinder Steve Coast live in Wien
Wie OpenStreetMaps die Welt abbildet und was ein erfolgreiches Crowdsourcing Projekt ausmacht.