Advanced
Mailing List Archive

Mailing List Archive

  1. Home >
  2. GnuPG>
  3. users
FYI: AES patch
henk.vergonet at ben
Oct 9, 2000, 2:03 AM
Post #1 of 9 (1842 views)
Permalink
Gent's

Now the NIST has selected the Rijndael algorithm as a successor for DES
I've created a smal patch for gpg. (Just for fun)

I've used the 'official' Optimised ANSI C v2.4 implementation of
Rijndael and Joan Daemen. See for details:
http://www.esat.kuleuven.ac.be/~rijmen/rijndael


installation:

gzip -dc gnupg-1.0.3.tar.gz tar xf -
gzip -dc gnupg-1.0.3.aes.patch.tar.gz | tar xf -
cd gnupg-1.0.3
rm cipher/Makefile.in
automake ./cipher/Makefile
./configure
make

If all went OK you should see something like:

gpg --version
gpg (GnuPG) 1.0.3
Copyright (C) 2000 Free Software Foundation, Inc.
This program comes with ABSOLUTELY NO WARRANTY.
This is free software, and you are welcome to redistribute it
under certain conditions. See the file COPYING for details.

Home: ~/.gnupg
Supported algorithms:
Cipher: 3DES, CAST5, BLOWFISH, TWOFISH, AES128, AES192, AES256
Pubkey: RSA, RSA-E, RSA-S, ELG-E, DSA, ELG
Hash: MD5, SHA1, RIPEMD160

If you've any comments please use a CC, as I'm not subscribed to this
newsgroup.


Regards,

Henk Vergonet



<<gnupg-1.0.3.aes.patch.tar.gz>>

Attached Files:

Re: FYI: AES patch [ In reply to ]
wk at gnupg
Oct 9, 2000, 3:19 AM
Post #2 of 9 (1834 views)
Permalink
On Mon, 9 Oct 2000, Vergonet, Henk wrote:

> Now the NIST has selected the Rijndael algorithm as a successor for DES
> I've created a smal patch for gpg. (Just for fun)

It is alreay available since Oct 3rd:

ftp://ftp.guug.de/gcrypt/devel/rijndael.c.gz

It is a module:

$ eval `grep gcc rijndael.c` && cp rijndael /usr/local/lib/gnupg/
$ echo "load-extension rijndael" >>~/.gnupg/options

I did anounce it only on the developers ML so that we can test it
first against other implementations. It seesm to works, but please
wait a few days before you start to use it.

Anyway, it is only useful for symmetric-only encryption becuase
there are yet no Rijndael preferences.

Werner

--
Werner Koch GnuPG key: 621CC013
OpenIT GmbH http://www.OpenIT.de

--
Archive is at http://lists.gnupg.org - Unsubscribe by sending mail
with a subject of "unsubscribe" to gnupg-users-request@gnupg.org
Re: FYI: AES patch [ In reply to ]
johanw at vulcan
Oct 9, 2000, 12:28 PM
Post #3 of 9 (1831 views)
Permalink
Werner Koch wrote:

> Anyway, it is only useful for symmetric-only encryption becuase
> there are yet no Rijndael preferences.

Won't explicit cipher-algo options work? Or are they overruled by the key
preferences?

BTW, is there a maximum number of algorithms that can be loaded as a module?
When I load rijndael, idea and skipjack I lose IDEA in gpg --version. When I
don't load skipjack I get idea back.

--
ir. J.C.A. Wevers // Physics and science fiction site:
johanw@vulcan.xs4all.nl // http://www.xs4all.nl/~johanw/index.html
PGP/GPG public keys at http://www.xs4all.nl/~johanw/pgpkeys.html

--
Archive is at http://lists.gnupg.org - Unsubscribe by sending mail
with a subject of "unsubscribe" to gnupg-users-request@gnupg.org
Re: FYI: AES patch [ In reply to ]
wk at gnupg
Oct 10, 2000, 3:04 AM
Post #4 of 9 (1836 views)
Permalink
On Mon, 9 Oct 2000, Johan Wevers wrote:

> Won't explicit cipher-algo options work? Or are they overruled by the key
> preferences?

--cipher-algo rijndael

does work and overrides the preferences.

> BTW, is there a maximum number of algorithms that can be loaded as a module?

Yes. Change the TABLE_SIZE somewhere at the top of cipher/pubkey.c

> When I load rijndael, idea and skipjack I lose IDEA in gpg --version. When I

[Still using NSA's Skipjack? Tssss...]

Ciao,

Werner


--
Werner Koch GnuPG key: 621CC013
OpenIT GmbH http://www.OpenIT.de

--
Archive is at http://lists.gnupg.org - Unsubscribe by sending mail
with a subject of "unsubscribe" to gnupg-users-request@gnupg.org
RE: FYI: AES patch [ In reply to ]
henk.vergonet at ben
Oct 12, 2000, 12:39 AM
Post #5 of 9 (1835 views)
Permalink
Preferences should be determined by:
- Algorithm security
- Patent restrictions
- Encription & decription speed

But I agree with Werner:
It's likely the NSA have already found a backdoor in the
algorithm, this is probably why the NIST has selected it ;).

Henk




-----Original Message-----
From: L. Sassaman [mailto:rabbi@quickie.net]
Sent: Wednesday, October 11, 2000 11:34 PM
To: Werner Koch
Cc: Vergonet, Henk; 'gnupg-users@gnupg.org'; Roussou, Ronald
Subject: Re: FYI: AES patch


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Mon, 9 Oct 2000, Werner Koch wrote:

> Anyway, it is only useful for symmetric-only encryption becuase
> there are yet no Rijndael preferences.

Actually, there are "AES" prefs, no?

__

L. Sassaman

Security Architect | "Lose your dreams and you
Technology Consultant | will lose your mind."
|
http://sion.quickie.net | --The Rolling Stones

-----BEGIN PGP SIGNATURE-----
Comment: OpenPGP Encrypted Email Preferred.

iD8DBQE55NzBPYrxsgmsCmoRAq/AAKDOl8sXsFFBGhctrFQSQSXiNwQvLQCeOMTO
n41LMUWEXvChqnL2SpN+Uko=
=7pT8
-----END PGP SIGNATURE-----

--
Archive is at http://lists.gnupg.org - Unsubscribe by sending mail
with a subject of "unsubscribe" to gnupg-users-request@gnupg.org
Re: FYI: AES patch [ In reply to ]
wk at gnupg
Oct 12, 2000, 2:21 AM
Post #6 of 9 (1832 views)
Permalink
On Wed, 11 Oct 2000, L. Sassaman wrote:

> Actually, there are "AES" prefs, no?

No. However, GnuPG generates prefs for Twofish for quite a while now.


--
Werner Koch GnuPG key: 621CC013
OpenIT GmbH http://www.OpenIT.de

--
Archive is at http://lists.gnupg.org - Unsubscribe by sending mail
with a subject of "unsubscribe" to gnupg-users-request@gnupg.org
Re: FYI: AES patch [ In reply to ]
johanw at vulcan
Oct 12, 2000, 10:42 AM
Post #7 of 9 (1834 views)
Permalink
Vergonet, Henk wrote:

> But I agree with Werner:
> It's likely the NSA have already found a backdoor in the
> algorithm, this is probably why the NIST has selected it ;).

When did Werner say this?

BTW, not that I trust the NSA, but doesn't selecting a weak cipher also give
certauin risks to themselves when someone else can also bvreak it? And
didn't they actually make the original IBM DES design stronger by optimizing
it against differential cryptanalyses in a time when this technique wasn't
known in the civilian crypto world?

--
ir. J.C.A. Wevers // Physics and science fiction site:
johanw@vulcan.xs4all.nl // http://www.xs4all.nl/~johanw/index.html
PGP/GPG public keys at http://www.xs4all.nl/~johanw/pgpkeys.html

--
Archive is at http://lists.gnupg.org - Unsubscribe by sending mail
with a subject of "unsubscribe" to gnupg-users-request@gnupg.org
Re: FYI: AES patch [ In reply to ]
grlongar at office
Oct 13, 2000, 4:25 AM
Post #8 of 9 (1832 views)
Permalink
On Thu, Oct 12, 2000 at 07:42:40PM +0200, Johan Wevers wrote:
> Vergonet, Henk wrote:
>
> > But I agree with Werner:
> > It's likely the NSA have already found a backdoor in the
> > algorithm, this is probably why the NIST has selected it ;).
>
> When did Werner say this?

I can not imagine Werner did really said this ;-) Werner, am I wrong?

> BTW, not that I trust the NSA, but doesn't selecting a weak cipher also give
> certauin risks to themselves when someone else can also bvreak it? And
> didn't they actually make the original IBM DES design stronger by optimizing
> it against differential cryptanalyses in a time when this technique wasn't
> known in the civilian crypto world?

In fact nobody knows if they really did. IBM proposed DES to NBS/NIST for
the requested Public Cipher Algorithm. NSA (at that time the Agency did not
publicly admit their own existence) checked the algorithm and changed the
S-Boxes. This was the only thing done by NSA (officially to assure IBM did
not put any trapdoor in DES - some people pointed to this as evidence NSA
put themselve a trapdoor in DES. But no cryptoanalysis did ever prove this
theory). Tuchman and Meyer, two of the cryptographers at IBM who designed
DES, said NSA did not alter the design: "NSA did not dictate a single wire"

--
Gruesse
Gregor
-+-+-+-
All true wisdom is found on T-shirts.

--
Archive is at http://lists.gnupg.org - Unsubscribe by sending mail
with a subject of "unsubscribe" to gnupg-users-request@gnupg.org
Re: FYI: AES patch [ In reply to ]
wk at gnupg
Oct 13, 2000, 5:06 AM
Post #9 of 9 (1834 views)
Permalink
On Fri, 13 Oct 2000, Gregor Longariva wrote:

> > When did Werner say this?
>
> I can not imagine Werner did really said this ;-) Werner, am I wrong?

I can't remember that I said this; there is an archive to check it.

> publicly admit their own existence) checked the algorithm and changed the
> S-Boxes. This was the only thing done by NSA (officially to assure IBM did

And 15 or so years later it became clear why they did this. Those
changed S-Boxes are better suited against differential cryptanalysis
- a method the NSA knew about 15 years before the academic
researchers.

Ciao,

Werner


--
Werner Koch GnuPG key: 621CC013
OpenIT GmbH http://www.OpenIT.de

--
Archive is at http://lists.gnupg.org - Unsubscribe by sending mail
with a subject of "unsubscribe" to gnupg-users-request@gnupg.org

©2024 GT.net. A Gossamer Threads company.
5th Floor, 455 Granville St., Vancouver, BC V6C 1T1, Canada | Legal