Practical Advice for those using AES256 cipher?

Joseph Oreste Bruni jbruni at
Wed Aug 19 18:37:17 CEST 2009

The successful attacks were on reduced-round versions of the algorithm, not on the current implementations. The article was mostly informative for crypto geeks as a state-of-the-art. The practical advice for end-users would be to stick with the defaults for now.


On Wednesday, August 19, 2009, at 06:28AM, "Kevin Hilton" <kevhilton at> wrote:
>Although I usually get a wide range of responses, is there any
>practical advice an end-user should take away from the recent AES256
>attacks as described
> Should I continue to use AES256 (double AES) or default to single AES
>or simply default back to 3DES, or just sit tight?  Although I found
>the article interesting (not sure if I understood a lot of the blog
>comments), is there any practical advice I should take away from it as
>it relates to GnuPG?
>Kevin Hilton
>Gnupg-users mailing list
>Gnupg-users at

More information about the Gnupg-users mailing list