[ISN] NSA's new mode of operation broken in less than 24 hours

From: InfoSec News (isnat_private)
Date: Mon Aug 06 2001 - 01:18:31 PDT

  • Next message: InfoSec News: "RE: [ISN] SANS Security Alert. Code Red Is Set to Come Storming Back!"

    Forwarded by: "Jay D. Dyson" <jdysonat_private>
    Courtesy of Cryptography List.
    Busy day.
    - ---------- Forwarded message ----------
    Date: Fri, 3 Aug 2001 10:50:34 -0400
    From: "R. A. Hettinga" <rahat_private>
    To: Digital Bearer Settlement List <dbsat_private>, dcsbat_private,
    Subject: NSA's new mode of operation broken in less than 24 hours
    - --- begin forwarded text
    Reply-To: <paulo.barretoat_private>
    From: "Paulo S. L. M. Barreto" <paulo.barretoat_private>
    To: <coderpunksat_private>
    Subject: NSA's new mode of operation broken in less than 24 hours
    Date: Thu, 2 Aug 2001 22:40:32 -0300
    Sender: owner-coderpunksat_private
    NSA has recently convinced NIST to include a new algorithm - something they
    dubbed "Double Counter" mode after 18 months of development - for
    consideration as a possible standard mode of operation for the AES. It's
    described at <http://csrc.nist.gov/encryption/modes/proposedmodes/>, but I
    wouldn't bother reading it now had I not done it already. The new mode seems
    to have been reduced to bits by Phillip Rogaway, David Wagner and others.
    Could it be that the NSA is losing its proverbial cryptologic skills? For
    one can't help but conclude that, if they acted in good faith to provide a
    useful mode, then they did a very poor job, and if they acted otherwise,
    then they quite underestimate current public knowledge in the area.
    Paulo Barreto.
    - --- end forwarded text
    - -- 
    - -----------------
    R. A. Hettinga <mailto: rahat_private>
    The Internet Bearer Underwriting Corporation <http://www.ibuc.com/>
    44 Farquhar Street, Boston, MA 02131 USA
    "... however it may deserve respect for its usefulness and antiquity,
    [predicting the end of the world] has not been found agreeable to
    experience." -- Edward Gibbon, 'Decline and Fall of the Roman Empire'
    - ---------------------------------------------------------------------
    The Cryptography Mailing List
    Unsubscribe by sending "unsubscribe cryptography" to majordomoat_private
    Version: 2.6.2
    Comment: See http://www.treachery.net/~jdyson/ for current keys.
    -----END PGP SIGNATURE-----
    ISN is currently hosted by Attrition.org
    To unsubscribe email majordomoat_private with 'unsubscribe isn' in the BODY
    of the mail.

    This archive was generated by hypermail 2b30 : Mon Aug 06 2001 - 02:59:40 PDT