IETF Logo Mail Archive

Re: SERPENT in OpenPGP?

Werner Koch <wk@gnupg.org> Fri, 27 August 2010 09:45 UTC

Received: from hoffman.proper.com (localhost [127.0.0.1]) by hoffman.proper.com (8.14.4/8.14.3) with ESMTP id o7R9jBvO081987 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Fri, 27 Aug 2010 02:45:11 -0700 (MST) (envelope-from owner-ietf-openpgp@mail.imc.org)
Received: (from majordom@localhost) by hoffman.proper.com (8.14.4/8.13.5/Submit) id o7R9jB3P081986; Fri, 27 Aug 2010 02:45:11 -0700 (MST) (envelope-from owner-ietf-openpgp@mail.imc.org)
X-Authentication-Warning: hoffman.proper.com: majordom set sender to owner-ietf-openpgp@mail.imc.org using -f
Received: from kerckhoffs.g10code.com (kerckhoffs.g10code.com [217.69.77.222]) by hoffman.proper.com (8.14.4/8.14.3) with ESMTP id o7R9j9qc081979 (version=TLSv1/SSLv3 cipher=AES256-SHA bits=256 verify=NO) for <ietf-openpgp@imc.org>; Fri, 27 Aug 2010 02:45:10 -0700 (MST) (envelope-from wk@gnupg.org)
Received: from uucp by kerckhoffs.g10code.com with local-rmail (Exim 4.69 #1 (Debian)) id 1OovUi-0008U6-NR for <ietf-openpgp@imc.org>; Fri, 27 Aug 2010 11:45:08 +0200
Received: from wk by vigenere.g10code.de with local (Exim 4.69 #1 (Debian)) id 1OovQK-00025v-Cb; Fri, 27 Aug 2010 11:40:36 +0200
From: Werner Koch <wk@gnupg.org>
To: Christoph Anton Mitterer <calestyo@scientia.net>
Cc: ietf-openpgp@imc.org
Subject: Re: SERPENT in OpenPGP?
References: <1282856536.11340.29.camel@fermat.scientia.net>
Organisation: g10 Code GmbH
OpenPGP: id=5B0358A2; url=finger:wk@g10code.com
Date: Fri, 27 Aug 2010 11:40:36 +0200
In-Reply-To: <1282856536.11340.29.camel@fermat.scientia.net> (Christoph Anton Mitterer's message of "Thu, 26 Aug 2010 23:02:16 +0200")
Message-ID: <87pqx4mm0b.fsf@vigenere.g10code.de>
User-Agent: Gnus/5.13 (Gnus v5.13)
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Sender: owner-ietf-openpgp@mail.imc.org
Precedence: bulk
List-Archive: <http://www.imc.org/ietf-openpgp/mail-archive/>
List-Unsubscribe: <mailto:ietf-openpgp-request@imc.org?body=unsubscribe>
List-ID: <ietf-openpgp.imc.org>

On Thu, 26 Aug 2010 23:02, calestyo@scientia.net said:

> Have it ever been considered to add SERPENT to OpenPGP?

No.  We have strong algorithms and we try to keep the list of algorithms
short for better interoperability.  I can see no reason to add Serpent
to OpenPGP; there is no advantage.

Nowadays we use AES as the one true standardized algorithms.  For
backward compatibility we support a few other algorithms as well.

Twofish is a special case because back in 1999 we considered it a good
idea to add a 128 bit block size cipher to OpenPGP and picked a
promising candidate from the AES contest.  Twofish didn't win the
competition but we kept it for backward compatibility.  This backward
compatibility is also a reason why we should not add new algorithms just
for the fun of it.  We will have to support those algorithms for the
next decades on all kind of devices and each extra algorithms makes that
harder from a maintenance point of view.

Camellia has been added because it is a required algorithm in Japan,
like AES in the US and elsewhere.


Salam-Shalom,

   Werner


-- 
Die Gedanken sind frei.  Ausnahmen regelt ein Bundesgesetz.

v2.23.0 | Report a Bug | By Email