[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Network Associates PGP bulk encryption algorithms

To: CLEE <cl-elec-exch@lists.glhec.org>
Subject: Network Associates PGP bulk encryption algorithms
From: "David C. Niemi" <dcn0@salliemae.com>
Date: Fri, 17 Dec 1999 18:31:37 -0500 (EST)
Sender: owner-cl-elec-exch@lists.glhec.org



It does not appear that Network Associates has updated the encryption
algorithms it supports since it bought the product.  As a result, they
are older, less secure, and *much* slower than the more modern
algorithms like Twofish and Rijndael.

The list it supports is:
	CAST128
	IDEA
	Triple DES

GnuPG, on theother hand, supports:
	CAST5 (is this the same as CAST128?)
	Triple DES
	Blowfish
	Twofish

It appears the free-for-noncommercial-use MIT version uses the same ones
as the NAS version.

This, plus the not-quite-compliant behavior of NAI PGP might lead us to
a second proposal: require Twofish and true OpenPGP compliance, which is
currently met by GnuPG but not by NAI PGP, but which may well be met by
NAI PGP sometime in the future.

David C. Niemi         dcn0@salliemae.com        (703) 810-5538
Network and Communications    SallieMae    Reston, Virginia USA

Prev by Date: Upcoming Monday High-Performance Decisions
Next by Date: Re: Question about Guarantor id's
Prev by thread: Upcoming Monday High-Performance Decisions
Next by thread: CL5 High Performance Transport Decision and draft JAD Agenda Items
Index(es):
- Date
- Thread