Reply to post: Re: Slightly more complicated as far as AES is concerned

We need to talk about mathematical backdoors in encryption algorithms

Tomato42 Silver badge

Re: Slightly more complicated as far as AES is concerned

> known weakness in one of the S-Boxes in AES - this information is a while back and cannot recall the details.

that's the first time I hear this...

> I also recall someone stating that there is a vulnerability when using 256bit keys as opposed to 128bit keys ?

that's a related-key vulnerability (it's easier to perform for AES-256 than it is for AES-128), if your keys come from a PRF (as they do in S/MIME, TLS and IPsec, among others), it's only of academic importance

> With the recent BGP event, perhaps this is an indicator that our security is not as good as we believe ?

BGP has no security, the problem is that it was designed at the time when it was not a problem, the world changed around it - but it's a problem as well known as the lack of security in HTTP

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2019