Security considerations: CAST-128

Werner Koch wk at
Fri Oct 22 10:10:44 CEST 2010

On Thu, 21 Oct 2010 18:41, danthehat at said:

> I'm not sure how computationally feasible they are.  According to the
> paper, successful attacks were conducted on a 4 and 6 round version of
> CAST-128.

You can mount attacks on all algorithms if you reduce the number of
rounds.  In particular if you reduce them from 16 to 4.  Without having
read the paper I am pretty sure that an attack on a reduced round
version of CAST has has no practical consequence.



Die Gedanken sind frei.  Ausnahmen regelt ein Bundesgesetz.

More information about the Gnupg-users mailing list