At 11:19 PM 12/4/00 -0800, Bram Cohen wrote: >On Mon, 4 Dec 2000, William Allen Simpson wrote: > >> We could use the excuse of AES implementation to foster a move to a >> new common denominator. > >AES is silly without an equivalently good secure hash function, which we >don't have right now. > Is there a reason not to use AES block cipher in a hashing mode if you need a secure digest of some data? I can only imagine efficiency reasons, ie, faster to use a dedicated hash function than to use a full block cipher. Similarly with stream ciphers; any block cipher can be stream cipher and vice versa. If you were doing hardware, you might want to avoid implementing extra algorithms. dh
- Re: Is PGP broken? Ben Laurie
- Re: Is PGP broken? Russell Nelson
- Re: Is PGP broken? Ralf Senderek
- Re: Is PGP broken? Enzo Michelangeli
- Re: Is PGP broken? David Bird
- migration paradigm (was: Is PGP broken?) William Allen Simpson
- Re: migration paradigm (was: Is PGP broken... Bram Cohen
- AES (was Re: migration paradigm) Arnold G. Reinhold
- Re: migration paradigm (was: Is PGP br... Bram Cohen
- Re: migration paradigm (was: Is PG... Paulo S. L. M. Barreto
- Re: migration paradigm (was: Is PGP br... David Honig
- Re: migration paradigm (was: Is PG... David Wagner
- Re: migration paradigm (was: Is PG... Bram Cohen
- Re: migration paradigm (was: ... David Honig
- Re: migration paradigm (was: ... Paul Crowley
- Re: Is PGP broken? Ralf Senderek
- Re: Is PGP broken? Peter Gutmann
- Re: Is PGP broken? Enzo Michelangeli
- Re: Is PGP broken? lcs Mixmaster Remailer
- Re: Is PGP broken? L. Sassaman
- Re: Is PGP broken? Ralf Senderek