On Sun, May 12, 2024 at 02:16:47PM +0100, Richard Miller wrote: > > That's quadrillions of years. Not what most people would call "trivial". > And that's generously assuming the implementation of meet-in-the-middle > is zero cost. Without meet-in-the-middle, we're looking at a 168-bit > keyspace and an even more preposterous number of years.
Meanwhile, sweet32 exists, all this shit has already been prosecuted on other venues, and NIST shitcanned 3DES entirely last year. Not deprecated. Disallowed. Why? Because no matter how many numbers you paste into an email, it costs thirty bucks to crack it on someone else's ASIC farm. Pretending that getting access to $100k hash-cracking arrays is any more inconvenient than Uber Eats is straight-up disingenuous. It is extremely gross to be defending 3DES in 2024. You should know better. I don't particularly care if 9legacy adopts dp9ik, but there are people who will come reading this list archive down the road, and they'll be under the assumption that your arguments are in good faith. I hope they are not, because this crap is at best irresponsible. Occam's razor does not advocate ignoring the entire standardized best practices of the industry because you have emotional attachments to broken software and have used a pocket calculator to convince yourself you know better than everyone else on Earth. Advocating a switch to 3DES because it's backward-compatible with DES if you use it wrong is magnificent trolling, or depressing malpractice, depending on your intent. I can't ever know that, so I'll just state for posterity: kids, don't do this. It's a terrible plan. Do better, khm ------------------------------------------ 9fans: 9fans Permalink: https://9fans.topicbox.com/groups/9fans/T56397eff6269af27-M6ef048148514ce58cf76ead5 Delivery options: https://9fans.topicbox.com/groups/9fans/subscription
