Bram Cohen <[EMAIL PROTECTED]> writes: > > Is there a reason not to use AES block cipher in a hashing mode > > if you need a secure digest of some data? > > Hashing modes of block ciphers require a re-key for every block, and hence > are really, really slow. Well, Rijndael can re-key faster than it can encrypt, so it's less of a problem than with other block ciphers. Of course, there are not unrelated worries that Rijndael's key schedule may not offer the strength required for hashing modes, though the designers are confident that the strength of the round function ensures everything will be OK. -- __ \/ o\ [EMAIL PROTECTED] /\__/ http://www.cluefactory.org.uk/paul/
- Re: Is PGP broken? David Bird
- migration paradigm (was: Is PGP broken?) William Allen Simpson
- Re: migration paradigm (was: Is PGP broken... Bram Cohen
- AES (was Re: migration paradigm) Arnold G. Reinhold
- Re: migration paradigm (was: Is PGP br... Bram Cohen
- Re: migration paradigm (was: Is PG... Paulo S. L. M. Barreto
- Re: migration paradigm (was: Is PGP br... David Honig
- Re: migration paradigm (was: Is PG... David Wagner
- Re: migration paradigm (was: Is PG... Bram Cohen
- Re: migration paradigm (was: ... David Honig
- Re: Is PGP broken? Paul Crowley
- Re: Is PGP broken? Ralf Senderek
- Re: Is PGP broken? Peter Gutmann
- Re: Is PGP broken? Enzo Michelangeli
- Re: Is PGP broken? lcs Mixmaster Remailer
- Re: Is PGP broken? L. Sassaman
- Re: Is PGP broken? Ralf Senderek
- Re: Is PGP broken? Steven M. Bellovin
- Re: Is PGP broken? Jeffrey I. Schiller
- Re: Is PGP broken? Peter Gutmann