MDC & Symmetric
disastry@saiknes.lv
disastry@saiknes.lv
Tue May 21 18:38:08 2002
-----BEGIN PGP SIGNED MESSAGE-----
Hash: RIPEMD160
David Shaw dshaw@jabberwocky.com wrote:
>
> On Mon, May 20, 2002 at 11:30:58AM +0000, Aurelio Turco wrote:
> > Does gpg's symmetric encryption also benefit from
> > MDC (Modification Detection Code)?
>
> Yes. Since unlike PK encryption, there is no way to tell if the
> recepient can handle it, it is off by default. You usually need to
> turn it on via --force-mdc.
> It is on by default on all of the >128bit ciphers.
> David
so this includes 3DES (it's 168 bit) and excludes AES128? ;->>
no,
this is default for all ciphers with blocksize >= 128bits:
AES128/192/256 and Twofish.
__
Disastry http://disastry.dhs.org/
http://disastry.dhs.org/pgp <----PGP plugins for Netscape and MDaemon
^----PGP 2.6.3ia-multi06 (supports IDEA, CAST5, BLOWFISH, TWOFISH,
AES, 3DES ciphers and MD5, SHA1, RIPEMD160, SHA2 hashes)
-----BEGIN PGP SIGNATURE-----
Version: Netscape PGP half-Plugin 0.15 by Disastry / PGPsdk v1.7.1
iQA/AwUBPOnQ+TBaTVEuJQxkEQP/RACg8me2vGcty2p5ClWsK9dqqlWWiXQAnAn5
zlaHkuQ3ofRpA4areXO3ogHN
=gPys
-----END PGP SIGNATURE-----