any plans to use serpent?

Karl Magdsick kmagnum at
Thu Apr 13 16:25:45 CEST 2006

On 4/13/06, Janusz A. Urbanowicz <alex at> wrote:
> On Wed, Apr 12, 2006 at 08:11:18PM -0500, Travis H. wrote:
> > >From everything I read, serpent is the most conservative of the AES candidates.
> >
> > Are there any plans to incorporate it into gpg?  If so, why not? ;-)
> The real question is why yes?

Especially in the face of the XSL attack.

> if you want to use modern and trendy algorithm, you have AES. If
> you're cryptographically conservative like me, there is 3DES. If
> you're old school PGP there is IDEA and CAST. If you're Schneier's
> follower, there is Blowfish. What qualities do Serpent have that the
> abovementioned lack?

Don't forget Twofish ;-)

Twofish is also already implemented in GnuPG (S10), was an AES
finalist, and  (most importantly) has the added advantage over Serpent
and AES of appearing resistant to the XSL attack.  (I'm aware that
at least the application of XSL to AES is in dispute.)

More information about the Gnupg-devel mailing list