RE: comments on draft-ietf-ipsec-ciph-cbc-02.txt

Markku-Juhani Saarinen <mjos@ssh.fi> Fri, 13 March 1998 08:12 UTC

Received: (from majordom@localhost) by portal.ex.tis.com (8.8.2/8.8.2) id DAA06733 for ipsec-outgoing; Fri, 13 Mar 1998 03:12:47 -0500 (EST)
Date: Fri, 13 Mar 1998 10:26:51 +0200
From: Markku-Juhani Saarinen <mjos@ssh.fi>
To: Roy Pereira <rpereira@TimeStep.com>
cc: "'ipsec@tis.com'" <ipsec@tis.com>
Subject: RE: comments on draft-ietf-ipsec-ciph-cbc-02.txt
In-Reply-To: <c=US%a=_%p=TimeStep_Corpora%l=TSNTSRV2-980312200042Z-2312@tsntsrv2.timestep.com>
Message-ID: <Pine.NEB.3.95q.980313094113.24039A-100000@pilari.ssh.fi>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset="US-ASCII"
Sender: owner-ipsec@ex.tis.com
Precedence: bulk

> How many rounds do you suggest for IDEA?

IDEA has eight rounds.

4-round IDEA is a research toy, and should not even be called IDEA.
X. Lai and J. Massey never proposed it for real-life applications.

It apparently creeped into the drafts because Applied Cryptography
says (2nd ed, p. 325): 

  "(..) Currently the best attack against IDEA is faster than brute force
   only for 2.5 rounds or less; 4 round IDEA would be twice as fast and,
   as far as I know, just as secure."

This does not reflect our 1998 knowledge.

- mj

Markku-Juhani O. Saarinen <mjos@ssh.fi>, SSH Communications Security Ltd

comments on draft-ietf-ipsec-ciph-cbc-02.txt Markku-Juhani Saarinen
RE: comments on draft-ietf-ipsec-ciph-cbc-02.txt Roy Pereira
RE: comments on draft-ietf-ipsec-ciph-cbc-02.txt Helger Lipmaa
RE: comments on draft-ietf-ipsec-ciph-cbc-02.txt Markku-Juhani Saarinen
RE: comments on draft-ietf-ipsec-ciph-cbc-02.txt Roy Pereira