From owner-freebsd-current Sat Aug 26 21:40:55 2000 Delivered-To: freebsd-current@freebsd.org Received: from cypherspace.org (modemcable228.178-201-24.mtl.mc.videotron.net [24.201.178.228]) by hub.freebsd.org (Postfix) with ESMTP id A70EB37B424 for ; Sat, 26 Aug 2000 21:40:52 -0700 (PDT) Received: (from adam@localhost) by cypherspace.org (8.8.3/8.6.12) id AAA06989; Sun, 27 Aug 2000 00:42:59 -0500 Date: Sun, 27 Aug 2000 00:42:59 -0500 Message-Id: <200008270542.AAA06989@cypherspace.org> From: Adam Back To: jeroen@vangelderen.org Cc: mark@grondar.za, current@freebsd.org In-reply-to: <39A88396.A0D06237@vangelderen.org> (jeroen@vangelderen.org) Subject: Re: yarrow & /dev/random Sender: owner-freebsd-current@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Jeroen writes: > > > Twofish in abrest Davies-Meyer mode is going to blow away BF-CBC-256 > > > pseudo 256 bit block cipher Davies-Meyer performance wise, because of > > > the key agility. > > But Twofish is not neccessarily the best choice. Yes, it's being > pushed by Bruce Schneier but that's for marketing purposes, not > for technical merits. I think that's a little negative -- all of the authors got to make their speil for how their cipher was the best. All the candidates are pushing their respective ciphers. > Iff you are going with a 128-bit-block blockcipher you ought to > select the most conservative one and that currently isn't Twofish > IMO. Anderson argues that Serpent is a conservative design, and makes a reasonable case for this, however as a result Serpent is a tad slow compared to others, and perhaps might lose as a result. I don't see that it makes much difference either way. You probably don't want to chose RC6 or MARS because their authors will probably patent them if they lose, and then you'll have to back off using them fast. Adam To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message