[Poll] What's the best symmetric cipher? in Security

[Poll] What's the best symmetric cipher? in Security http://www.dslreports.com/forum/r5068418 en Thu, 03 Dec 2009 14:19:20 EDT Thu, 03 Dec 2009 14:19:20 EDT Re: [Poll] What's the best symmetric cipher? http://www.dslreports.com/forum/remark,5122987 jansson_mark :

said by boomerbubba :
1) Is the security/insecurity of my suggestion purely a matter of the quality of the PRNG? Or is it that there is no such thing as an acceptable PRNG for these purposes?

Well, the problem is that its still PRNG. It has to be. If it was RNG, then you couldnt agree upon it and you would have to change keys in beforehand (like true OTP). As it is PRNG, it can be cracked open. It is very, very hard to determine how secure PRNG is so its very hard to tell what kinda security it would give.

quote:
2) If a good PRNG method does exist and is publicly known, what if the methodology is changed to: Use that PRNG, and the secret symmetric key is the the seed value?

Still the same problem exists. Its PRNG. Something quite similiar to what you are saying is actually RC4 or C4 cipher used in SSL/TLS connections (https that is). It basicly a PRNG which output is XOR:ed to datastream. :)

Something related to this is Jaxor. Its encryption program that I have designed (it should be out...some time...).
»www.markusjansson.net/erecent.html#jaxor
"Basicly what we are talking here is using the one-way hash function to create pseudorandom keys which are then XOR:ed to datastream. The "master key" (passphrase) is salted using the just created ciphertext to make new keys. "

Its actually very secure cipher. The security of these kinda of ciphers relies on the security of the hash function, since the hash function is the source of PRNG data. If the hash function is good, then its practicly RNG. But not in theory. Very close to RNG but not RNG... :)

quote:
I'm not being argumentative. Rather, I'm glad to have a forum where I can ask questions like this. (I would be driven out of sci.crypt as a hopeless newbie.)

And Im glad that we can have this kinda discussion here! Im a bit tired to all these "help, Im under attack because someone hit my port 2222 with a packet" -discussion we see too often... ;) :)
--
My computer security & privacy related homepage
»www.markusjansson.net
[text was edited by author 2002-11-25 14:14:53]]]> http://www.dslreports.com/forum/remark,5122987 Mon, 25 Nov 2002 14:12:46 EDT Re: [Poll] What's the best symmetric cipher? http://www.dslreports.com/forum/remark,5122497 boomerbubba :

said by jansson_mark :

said by boomerbubba :
A One Time Pad, generated by some proprietary PRNG method known only to the parties involved in the communication.

It might be very secure or it might be very insecure. I would not advice on using such method.

Markus, a couple of follow-up questions:

1) Is the security/insecurity of my suggestion purely a matter of the quality of the PRNG? Or is it that there is no such thing as an acceptable PRNG for these purposes?

2) If a good PRNG method does exist and is publicly known, what if the methodology is changed to: Use that PRNG, and the secret symmetric key is the the seed value?

I'm not being argumentative. Rather, I'm glad to have a forum where I can ask questions like this. (I would be driven out of sci.crypt as a hopeless newbie.)
--
A good lock will keep an honest man out.]]> http://www.dslreports.com/forum/remark,5122497 Mon, 25 Nov 2002 13:22:38 EDT Re: [Poll] What's the best symmetric cipher? http://www.dslreports.com/forum/remark,5117709 MeeToo7 : Ok, I see I went in over my head with you ;)

I'm obviously not as much into encryption as you are. I'm not using PGP or any encryption anymore, my knowledge is limited and haven't kept up with it.

Continue on ;)
--
Help find a cure, join Team Helix]]> http://www.dslreports.com/forum/remark,5117709 Sun, 24 Nov 2002 21:45:37 EDT Re: [Poll] What's the best symmetric cipher? http://www.dslreports.com/forum/remark,5117161 jansson_mark :

said by MeeToo7 :
You're poll question is misleading. Your categories are comparing apples and oranges.

No Im not. :)

quote:
First, AES is not an encryption algorith itself, but a name to be given to the best contenders of encryption, it stands for Advanced Encryption Standards.

Yes, I know. I thought about calling it Rijndael but since most people dont know what it is, I desided to use the AES term.

quote:
Second, Twofish is an evolution on Blowfish. It's been considered so good that it was encluded in PGP before AES was finalized.

And DES is an evolution of Lucifer. And MARS is a evolution of perhaps most of the other ciphers in the world today. They are still different ciphers. Besides, many people concider Blowfish better than Twofish, because Blowfish has longer track record.

quote:
Single DES is old news, it was cracked in a single day using an EFF machine. Don't know if 3DES has been cracked yet, but it seems pretty impossible to me, as it was said to take the time of the age of the universe to decipher, just a couple years ago.

When referring to 3DES, the DES is the algorithm. One could also ask do you prefer 3Skipjack or Skipjack...thats insane. The algorithm is still the same one.

quote:
But the power of computers seem to advance at light speed to me. I think this phenomenon is called Moore's Law? (The underestimation of computer power.)

True. However, there are much more efficient ways of breaking a modern cipher than brute forcing it.

quote:
CAST, IDEA, 3DES and Twofish haven't been cracked yet to my knowledge. The preference is subjective.

Thats why we are having this poll. :) I would like people to tell about why they prefer some cipher and not some other.

quote:
Some people don't like 3DES because it's based on DES, but well known experts hold it in high regards, from what I've read.

Not all experts. Finnish goverment computer security team does not recommend or permit the usage of 3DES for encrypting sensitive material. However, they do permit for example CAST5-128. :)
--
My computer security & privacy related homepage + PGP keys »www.markusjansson.net]]> http://www.dslreports.com/forum/remark,5117161 Sun, 24 Nov 2002 20:51:10 EDT Re: [Poll] What's the best symmetric cipher? http://www.dslreports.com/forum/remark,5116730 MeeToo7 : You're poll question is misleading. Your categories are comparing apples and oranges.

First, AES is not an encryption algorith itself, but a name to be given to the best contenders of encryption, it stands for Advanced Encryption Standards.

Second, Twofish is an evolution on Blowfish. It's been considered so good that it was encluded in PGP before AES was finalized.

Single DES is old news, it was cracked in a single day using an EFF machine. Don't know if 3DES has been cracked yet, but it seems pretty impossible to me, as it was said to take the time of the age of the universe to decipher, just a couple years ago. But the power of computers seem to advance at light speed to me. I think this phenomenon is called Moore's Law? (The underestimation of computer power.)

CAST, IDEA, 3DES and Twofish haven't been cracked yet to my knowledge. The preference is subjective. Some people don't like 3DES because it's based on DES, but well known experts hold it in high regards, from what I've read.
--
Help find a cure, join Team Helix]]> http://www.dslreports.com/forum/remark,5116730 Sun, 24 Nov 2002 20:12:37 EDT Re: [Poll] What's the best symmetric cipher? http://www.dslreports.com/forum/remark,5116696 Vampirefo : No problem break it down.

They are the same, just like ZA and Kerio are both firewalls, that in ways work the same, but in other ways work differently.
--
TrojanHunter Stands For Privacy!!!!!!! ]]> http://www.dslreports.com/forum/remark,5116696 Sun, 24 Nov 2002 20:09:04 EDT Re: [Poll] What's the best symmetric cipher? http://www.dslreports.com/forum/remark,5116651 jansson_mark :

said by Vampirefo :
Yes they are different in some ways but they are the same type of ciphers, very small differences.

Sorry to break this to you but, no, they are not at all the same type of ciphers. They are used on totally different things and the algorithms are totally different in nature. :)
--
My computer security & privacy related homepage + PGP keys »www.markusjansson.net]]> http://www.dslreports.com/forum/remark,5116651 Sun, 24 Nov 2002 20:05:17 EDT Re: [Poll] What's the best symmetric cipher? http://www.dslreports.com/forum/remark,5116539 Name Game : I will "for for" for you TomMc.. then we only have to find one more for..and that would make free..sorry... three DES>
--
GAV-Gladiator AntiVirus Forum- »www.forum.gladiator-antivirus.com/]]> http://www.dslreports.com/forum/remark,5116539 Sun, 24 Nov 2002 19:56:21 EDT Re: [Poll] What's the best symmetric cipher? http://www.dslreports.com/forum/remark,5116354 Steve :

said by TomMc:
How can you not have Triple DES included?

Just for for DES three times :-)]]> http://www.dslreports.com/forum/remark,5116354 Sun, 24 Nov 2002 19:33:18 EDT Re: [Poll] What's the best symmetric cipher? http://www.dslreports.com/forum/remark,5116224 anon : How can you not have Triple DES included?]]> http://www.dslreports.com/forum/remark,5116224 Sun, 24 Nov 2002 19:17:57 EDT Re: [Poll] What's the best symmetric cipher? http://www.dslreports.com/forum/remark,5115494 Vampirefo : Yes they are different in some ways but they are the same type of ciphers, very small differences.
--
TrojanHunter Stands For Privacy!!!!!!! ]]> http://www.dslreports.com/forum/remark,5115494 Sun, 24 Nov 2002 17:51:16 EDT Re: [Poll] What's the best symmetric cipher? http://www.dslreports.com/forum/remark,5115078 Steve :

said by Vampirefo :
»[Poll] What's the best asymmetric cipher?

The current poll is for symmetric ciphers: the referenced poll is for asymmetric ciphers. They're different.

Steve
--
Stephen J. Friedl � Security Consultant � Tustin, California USA � my web site]]> http://www.dslreports.com/forum/remark,5115078 Sun, 24 Nov 2002 17:06:55 EDT Re: [Poll] What's the best symmetric cipher? http://www.dslreports.com/forum/remark,5114860 Vampirefo : »[Poll] What's the best asymmetric cipher?
--
TrojanHunter Stands For Privacy!!!!!!! ]]> http://www.dslreports.com/forum/remark,5114860 Sun, 24 Nov 2002 16:40:58 EDT Re: [Poll] What's the best symmetric cipher? http://www.dslreports.com/forum/remark,5114817 Steve :

said by boomerbubba :
A One Time Pad, generated by some proprietary PRNG method known only to the parties involved in the communication.

If it uses pseudo-random number generator, it's not a one-time pad. Plenty of ciphers have been broken by cracking the PRNG. Only truly random (e.g., not calculated in software) inputs are allowed, such as something that measures radioactive decay.

Steve
--
Stephen J. Friedl � Security Consultant � Tustin, California USA � my web site]]> http://www.dslreports.com/forum/remark,5114817 Sun, 24 Nov 2002 16:36:11 EDT Re: [Poll] What's the best symmetric cipher? http://www.dslreports.com/forum/remark,5114206 LowWaterMark : I prefer one-way encryption. No decrypt option. That way, no one can ever figure out what it says. It's a similar concept to WOM (write-only memory).

;)
--
Use the most powerful combo Firewall/AV/AT package available - "Common Sense" - It can be upgraded daily!]]> http://www.dslreports.com/forum/remark,5114206 Sun, 24 Nov 2002 15:24:51 EDT Re: [Poll] What's the best symmetric cipher? http://www.dslreports.com/forum/remark,5113869 jansson_mark :

said by boomerbubba :
A One Time Pad, generated by some proprietary PRNG method known only to the parties involved in the communication.

It might be very secure or it might be very insecure. I would not advice on using such method.

But our military messaging system (SanLa) uses encryption somewhat similiar than that. It uses symmetric cipher(s) and "matrix" to encrypt. First the message is encrypted using symmetric ciphers and then that mess is encrypted using "matrix" similiar to that you descibed here. Without knowing the exact nature of the "matrix", its a pain in the *** to try to break it, since the message is already a mess before its putted throught the "matrix", so in practice you cant know when you have managed to "break" the "matrix" so you could start trying to break the symmetric cipher(s). :) Hehehehehee...

btw. did you know that the only cipher that "anti-Allieds" side used that wasnt broken during the WWII, was Finnish cipher? It was called "worm box" and was used until 1980:s. :)
--
My privacy related homepage & PGP keys: »www.markusjansson.net]]> http://www.dslreports.com/forum/remark,5113869 Sun, 24 Nov 2002 14:50:22 EDT Re: [Poll] What's the best symmetric cipher? http://www.dslreports.com/forum/remark,5070229 boomerbubba : A One Time Pad, generated by some proprietary PRNG method known only to the parties involved in the communication.
--
A good lock will keep an honest man out.]]> http://www.dslreports.com/forum/remark,5070229 Wed, 20 Nov 2002 01:37:04 EDT Re: [Poll] What's the best symmetric cipher? http://www.dslreports.com/forum/remark,5069989 Lithp : twofish]]> http://www.dslreports.com/forum/remark,5069989 Wed, 20 Nov 2002 01:03:36 EDT Re: [Poll] What's the best symmetric cipher? http://www.dslreports.com/forum/remark,5068712 jaykaykay : Ah! Good bedside reading. :) Thank you. I am not certain I will understand all that you've given me, but I shall make a good stab at it.

As far liking something NSA made, that's good thinking. Your point 2 says it all and quite well.
--
JKK:-) Age is a very high price to pay for my maturity. If I can't stay young, I can at least stay immature! ]]> http://www.dslreports.com/forum/remark,5068712 Tue, 19 Nov 2002 22:57:54 EDT Re: [Poll] What's the best symmetric cipher? http://www.dslreports.com/forum/remark,5068593 jansson_mark : My favorite is Skipjack. Why?
1) It was made by the NSA
2) They know how to crack codes and they know how to make them.
3) They didnt believe it would be published in open

Only downside is relatively small keysize (80bits), but if you would implement it like Skipjack -> 3Skipjack (like DES -> 3DES) then... :) :) :)
--
My privacy related homepage & PGP keys: »www.markusjansson.net]]> http://www.dslreports.com/forum/remark,5068593 Tue, 19 Nov 2002 22:48:27 EDT Re: [Poll] What's the best symmetric cipher? http://www.dslreports.com/forum/remark,5068562 jansson_mark :

said by jaykaykay :
I couldn't begin to answer that. First I would have to have a description of what a Symmetric Cipher is. :)

:) »www.ssh.com/support/cryptography···hms.html :)
"There are two classes of key-based encryption algorithms, symmetric (or secret-key) and asymmetric (or public-key) algorithms. The difference is that symmetric algorithms use the same key for encryption and decryption (or the decryption key is easily derived from the encryption key), whereas asymmetric algorithms use a different key for encryption and decryption, and the decryption key cannot be derived from the encryption key."

»www.mccune.cc/PGPpage2.htm#128bit
"Since PGP uses public keys so much larger than this, it is easy to become confused when we hear the "reality" of PGP being "only" 128 bit encryption. To understand this, it is necessary to know that PGP uses both symmetric algorithms (IDEA, CAST, or Triple DES; Twofish is an additional option in PGP 7.0, and AES is still an additional option in 7.0.1) and asymmetric algorithms (RSA or DH). The process is the same regardless of the algorithms used, so my explanation will simplify it by referring only to the traditional use of IDEA and RSA. IDEA is a thousand (or more) times faster than RSA, but cannot be used for encrypting a file/message to one key, and then decrypting that file/message to a different matching key (public key encryption, which RSA can do). So, PGP speeds up the whole process by first encrypting the file or message to IDEA, using a randomly generated "session key" (an IDEA key used just for that one instance of encryption). That randomly generated session key is then encrypted to the recipient's public key(s), and packaged along with the IDEA encrypted file/message. The recipient(s) then uses his/her private key to decrypt the session key, which is then used to decrypt the file/message. In addition to tremendously speeding everything up, this use of underlying symmetric encryption to a randomly generated session key, improves the overall security of PGP - and also helps explain why the same file/message encrypted to the same public key always looks different (a different session key was used). These underlying symmetric algorithms are believed to be best broken by a brute force attack of trying all possible keys, which is considered impossible to do because of the sheer number of keys to try - each additional bit doubles the number of keys that would have to be tried, so that a 57 bit algorithm would have twice the number of possible keys as a 56 bit algorithm. The asymmetric RSA algorithm is believed to be best broken by mathematical factoring. It is believed that a 3000* bit RSA asymmetric key would require as much time and effort to factor, as the time and effort to do a brute force attack on 128 bit IDEA. These key size comparisons are considered roughly comparable for the other algorithms used in PGP (except that 256 bit Twofish and AES compare to a 15000 bit DH or RSA key) - so if you want the highest possible level of security in PGP, you should use an RSA or DH key at least as large as 3000 bits."

Also, check from
»www.pgpi.org/doc/pgpintro/
»senderek.de/security/secret-key.···methods

--
My privacy related homepage & PGP keys:
»www.markusjansson.net
[text was edited by author 2002-11-19 22:55:23]]]> http://www.dslreports.com/forum/remark,5068562 Tue, 19 Nov 2002 22:44:21 EDT Re: [Poll] What's the best symmetric cipher? http://www.dslreports.com/forum/remark,5068531 jaykaykay : I couldn't begin to answer that. First I would have to have a description of what a Symmetric Cipher is. :) Yes, I have a general idea, but I would love your explanation so that I and so many others that still need to learn get some good education.
--
JKK:-) Age is a very high price to pay for my maturity. If I can't stay young, I can at least stay immature! ]]> http://www.dslreports.com/forum/remark,5068531 Tue, 19 Nov 2002 22:39:26 EDT [Poll] What's the best symmetric cipher? http://www.dslreports.com/forum/remark,5068418 jansson_mark : [poll]What do you think is the best cipher currently known in the public? (forget the keysize issue),AES,DES,Skipjack,Twofish,Blowfish,MARS,CAST,IDEA,RC4,RC6,GOST,SAFER,SERPENT,somethi ng else?[/poll]
[text was edited by author 2002-11-19 22:30:50]
]]> http://www.dslreports.com/forum/remark,5068418 Tue, 19 Nov 2002 22:29:19 EDT