lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <3F999C82.20806@tenebras.com>
Date: Fri, 24 Oct 2003 14:41:22 -0700
From: Michael Sierchio <kudzu@...ebras.com>
To: bugtraq@...urityfocus.com
Subject: Re: XLS Attack on AES (Rijndael)


latte1@...hmail.com wrote:
> I read, some time ago, about a new form of attack on
> the AES algorithm: Rijndael...
> 
> Since then I have not heard any more about it, so I
> was wondering what the latest thoughts on this method
> are ? Is is currently being researched, etc, etc...

Largely FUD (or FUDGE, if you will), and the inference drawn (AESbroken)
is unwarranted.  Robshaw and Murphy seem to be voicing an aesthetic
objection to the marked linearity in the diffusion layer -- even though
they clearly state that this offers no clear advantage to conventional
linear and differential cryptanalysis.  Also note that Robshaw worked
on RSA's finalist candidate (RC6) for AES, though he appears never to
have been given adequate credit.

The question to ask is:  How well does Rijndael meet the design goals
established by the NIST?"  And the answer, quite simply, is: "very well."





Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ