[Cryptography] NIST Workshop on Elliptic Curve Cryptography Standards
Bill Frantz
frantz at pwpconsult.com
Tue May 19 22:12:43 EDT 2015
On 5/19/15 at 2:48 PM, amccullagh at live.com (Adrian McCullagh) wrote:
>I am unaware of the NSA being involved in any of this. My
>understanding was that the NSA was involved in adjusting the
>S-Box structure. Further the NSA refused to say why they made
>the adjustments; that is they never justified why they did
>what they did.
My understanding is they changed it to protect against
differential cryptanalysis. At the time, differential
cryptanalysis was known by NSA, but not generally known in the
public crypto community. (The public crypto community was almost
non-existant at the time.) NSA protected a classified attack
while making DES's security basically as good as a brute force
attack. All users of DES had a clear ideas of how much
protection it offered with its 56 bit key. Some have said that
this is the last thing NSA did to improve civilian security.
Cheers - Bill
-------------------------------------------------------------------------
Bill Frantz | Re: Hardware Management Modes: | Periwinkle
(408)356-8506 | If there's a mode, there's a | 16345
Englewood Ave
www.pwpconsult.com | failure mode. - Jerry Leichter | Los Gatos,
CA 95032
More information about the cryptography
mailing list