Firewalls: Re: International use of DES

Firewalls
(March 1997)

Indexed By Thread: [Previous] [Next]

Subject:	Re: International use of DES
From:	Adam Shostack <adam @ homeport . org>
Date:	Wed, 19 Mar 1997 15:59:23 -0500 (EST)
To:	ark @ paranoid . convey . ru (ArkanoiD)
Cc:	Paulo . Delgado @ bta . pt, Firewalls @ GreatCircle . COM
In-reply-to:	<199703191919 . WAA06947 @ paranoid . convey . ru> from ArkanoiD at "Mar 19, 97 10:19:39 pm"

ArkanoiD wrote:

| > This is not exactly a question about firewalls, but I believe
| > it is not completely off topic:
| > 
| > I know I may not import encryption software, with support
| > for DES keys bigger than 40 bits, from the USA, without a
| > special permit. But what prevents me from including the
| > 128 bit DES algorithm in an application developed in-house?

| Nothing. Except maybe local laws. Here in Russia no one cares about
| even that. 


	You might also consider the fact that des hasa 56 bit key and
a 64 bit block, and that most proposed changes to the algorithim have
been shown to weaken it.

	Nothing prevents you from using IDEA, Blowfish or RC5 with 128
bit keys.  I'm fond of 3des when the horsepower is available.

Adam


-- 
"Well, that depends.  Do you mind the end of civilization as we know
it?"

Follow-Ups:

Re: International use of DES
From: Benedikt Stockebrand <benedikt @ devnull . ruhr . de>

References:

Re: International use of DES
From: ArkanoiD <ark @ paranoid . convey . ru>

Indexed By Date	Previous:	Re: sendmail on firewall From: Pauline van Winsen - Uniq Professional Services <Pauline . van . Winsen @ uniq . com . au>
Indexed By Date	Next:	FW: Cisco 2500s... From: "Caldwell, Matt" <caldwm @ xgate . columbiasc . ncr . com>
Indexed By Thread	Previous:	Re: International use of DES From: ArkanoiD <ark @ paranoid . convey . ru>
Indexed By Thread	Next:	Re: International use of DES From: Benedikt Stockebrand <benedikt @ devnull . ruhr . de>