Can 128-bit TripleDES encryption be broken ?

Can 128-bit TripleDES encryption be broken ?
Secure Home | Search | About
Login Password
Register Now! Lost Password?
 Microsoft Applications Security    Post an article   get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content add this group's latest topics to your Google content
Subject Author Date
Can 128-bit TripleDES encryption be broken ? Marlon Brown 01-11-2006
Posted by Marlon Brown on January 11, 2006, 12:39 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
A co-worker was arguing with me last night that 128-bit TripleDES can be
broken with today's computers. I am wondering if the co-worker was guessing
or there is evidence that TripleDES can be broken by brute force ?

According to the latest Verisign report, I see that 128-bit encryption key
would take 0.25 sextillion years to be broken (2005 reports by Yankee
Group).




Posted by Ted Zieglar on January 11, 2006, 12:59 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
This is what you guys argue about at work? You really need to get out more.

To the best of my knowledge, Triple DES has not been broken.

--
Ted Zieglar
"You can do it if you try."

> A co-worker was arguing with me last night that 128-bit TripleDES can be
> broken with today's computers. I am wondering if the co-worker was
guessing
> or there is evidence that TripleDES can be broken by brute force ?
>
> According to the latest Verisign report, I see that 128-bit encryption key
> would take 0.25 sextillion years to be broken (2005 reports by Yankee
> Group).
>
>
>


Posted by Steven L Umbach on January 11, 2006, 1:16 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
What with every computer on the planet working together for just that goal??
Challenge him to provide a reputable source and not some blog from some guy
in China. Though in the movie Swordfish I did see that a guy broke 256 bit
encryption in 24 hours on his laptop [just barely, he was sweating] with
some GUI program so maybe it is possible with that program he used. ---
Steve


>A co-worker was arguing with me last night that 128-bit TripleDES can be
>broken with today's computers. I am wondering if the co-worker was guessing
>or there is evidence that TripleDES can be broken by brute force ?
>
> According to the latest Verisign report, I see that 128-bit encryption key
> would take 0.25 sextillion years to be broken (2005 reports by Yankee
> Group).
>
>
>



Posted by Roger Abell [MVP] on January 12, 2006, 3:06 am
If you were  Registered and logged in, you could reply and use other advanced thread options
There is a reason behind the US moving to new algorithms . . .

>A co-worker was arguing with me last night that 128-bit TripleDES can be
>broken with today's computers. I am wondering if the co-worker was guessing
>or there is evidence that TripleDES can be broken by brute force ?
>
> According to the latest Verisign report, I see that 128-bit encryption key
> would take 0.25 sextillion years to be broken (2005 reports by Yankee
> Group).
>
>
>



Posted by John McGaw on January 13, 2006, 5:38 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
Marlon Brown wrote:
> A co-worker was arguing with me last night that 128-bit TripleDES can be
> broken with today's computers. I am wondering if the co-worker was guessing
> or there is evidence that TripleDES can be broken by brute force ?
>
> According to the latest Verisign report, I see that 128-bit encryption key
> would take 0.25 sextillion years to be broken (2005 reports by Yankee
> Group).
>
>
>

It seems that your question contains the answer: at least one authority
says that with 2005 vintage computational resources it can be broken in
0.25 sextillion years. If your co-worker simply said that it "can be
broken" and Yankee Group knows what it is writing about then, yes, it
can be broken, at least if you are willing to wait a while. If your
co-worker said that it can be done in three hours using an unmodified
Playstation then some proof is probably in order.

It seems likely that any form of encryption can be broken eventually
unless one assumes that the universe will dissolve before the process
can complete. But all that is necessary for a "good" encryption system
is that the breaking be so expensive and so slow that by the time the
process is finished the result will be worthless.

John McGaw
http://johnmcgaw.com

Similar ThreadsPosted
Data Encryption Standard (DES) encryption November 15, 2005, 6:26 pm
Re: "Broken"/unknown ACL's? November 23, 2005, 12:42 pm
"Broken"/unknown ACL's? November 22, 2005, 5:50 pm
XP internet security broken November 27, 2005, 5:29 pm
What is broken:McAfeee firewall or my router ????? Urgent, please July 25, 2006, 8:16 pm
Patched Flaw Could Have Broken Internet Backbone July 12, 2008, 11:56 am
Spam Inspector - broken promises (I smell Class Action) February 23, 2006, 11:52 pm
Encryption July 13, 2005, 5:32 pm
Encryption November 3, 2005, 12:05 pm
Encryption March 30, 2006, 11:36 pm

The site map in XML format XML site map

Contact Us | Privacy Policy