Schneier On the US Crypto Competition 58
Bruce Schneier has a commentary in Wired titled An American Idol for Crypto Geeks on the US government's competition for a new cryptographic hash function to become the national standard, covered here recently. He talks about how much the competition, slated to wrap up by 2011, will advance the cryptographic state of the art. And how much fun he expects to have.
Re:Terrorists?? (Score:1, Informative)
Damn terrorists!
Re:Whirlpool (Score:4, Informative)
Re:Whirlpool (Score:3, Informative)
Yes they have. In particular the AES competition required that submitters adhere to certain restrictions [aes.org] regarding patents.
Blowfish was never an AES candiate [quadibloc.com]
I'm not even sure what you mean here. On the whole, a slow key-schedule is a bad idea. You want your key schedule to be as fast as possible. The reason for this is that a fast key-schedule means you can target more platforms with the cipher (such as smart cards et al).
If you want to slow down dictionary attacks there are better ways to do this. Repeatedly hashing the passphrase is more sensible since the number of hashes can be scaled to the platform speed. Stopping a brute-force of a smart card is a world different to brute-force of a PGP disk.
Blowfish on the whole is a poor design. Now that we have AES I would recommend that over anything else.
Simon