Posted by: Rich Gibbs
on November 04, 2005 05:00 AM
are GnuPG and PGP encryption algorithms also under suspicion of being weak?
What they were talking about primarily at this conference was cryptographic hash functions (see the sidebar in the NF article for some of their uses). So I think that, if you are talking strictly about encryption algorithms, then the ones in PGP and GnuPG are OK (with the usual caveat "as far as we know"). The algorithms supported for encryption in my version of GnuPG are:
I'm not familiar with CAST5, but the other ones are, AFAIK, OK. (3DES is triple DES; AES* are variants of the recently adopted Advanced Encryption Standard from NIST; BLOWFISH and TWOFISH are algorithms developed by Bruce Schneier.)
Incidentally, if you would like to read Schneier's take on the conference, he has comments on his blog; these are the permanent links to the entries:
Learn about Linux
Download Linux
Get Linux help
Re:what about GnuPG & PGP
Posted by: Rich Gibbs on November 04, 2005 05:00 AMWhat they were talking about primarily at this conference was cryptographic hash functions (see the sidebar in the NF article for some of their uses). So I think that, if you are talking strictly about encryption algorithms, then the ones in PGP and GnuPG are OK (with the usual caveat "as far as we know"). The algorithms supported for encryption in my version of GnuPG are:
I'm not familiar with CAST5, but the other ones are, AFAIK, OK. (3DES is triple DES; AES* are variants of the recently adopted Advanced Encryption Standard from NIST; BLOWFISH and TWOFISH are algorithms developed by Bruce Schneier.)
Incidentally, if you would like to read Schneier's take on the conference, he has comments on his blog; these are the permanent links to the entries:
<a href="http://www.schneier.com/blog/archives/2005/10/nist_hash_works_1.html" title="schneier.com">http://www.schneier.com/blog/archives/2005/10/nis<nobr>t<wbr></nobr> _hash_works_1.html</a schneier.com>
<a href="http://www.schneier.com/blog/archives/2005/10/nist_hash_works_2.html" title="schneier.com">http://www.schneier.com/blog/archives/2005/10/nis<nobr>t<wbr></nobr> _hash_works_2.html</a schneier.com>
<a href="http://www.schneier.com/blog/archives/2005/10/nist_hash_works_3.html" title="schneier.com">http://www.schneier.com/blog/archives/2005/10/nis<nobr>t<wbr></nobr> _hash_works_3.html</a schneier.com>
<a href="http://www.schneier.com/blog/archives/2005/11/nist_hash_works.html" title="schneier.com">http://www.schneier.com/blog/archives/2005/11/nis<nobr>t<wbr></nobr> _hash_works.html</a schneier.com>
<a href="http://www.schneier.com/blog/archives/2005/11/nist_hash_works_4.html" title="schneier.com">http://www.schneier.com/blog/archives/2005/11/nis<nobr>t<wbr></nobr> _hash_works_4.html</a schneier.com>
#