At 02:44 AM 6/20/2005, Peter Gutmann wrote:
Stephan Neuhaus <[EMAIL PROTECTED]> writes: >Concerning the practical use of AES, you may be right (even though it would >be nice to have some advice on what one *should* do instead).
Would switching to triple-AES (or double-AES) or something help? Yeah, it's ugly, and AES was supposed to let us get away from triple-DES, but maybe running one AES with the original key and the other session with the inverse of the key would interfere with timing attacks? --------------------------------------------------------------------- The Cryptography Mailing List Unsubscribe by sending "unsubscribe cryptography" to [EMAIL PROTECTED]