Kurt Mosiejczuk <k...@se.rit.edu> wrote: > > Blowfish is older, not standardized, and hasn't received the attention > > from the cryptographic community that AES has. > > Blowfish isn't standardized? Not being chosen as a standard doesn't > mean that everyone is using an incompatible version of something.
And I meant the former, not the latter. > And AES-128 (and only that flavor of AES, so far) has a crack making > decrypting it significantly quicker. News to me. Reference? (You are probably confusing this with the related-key attacks on AES-192 and AES-256.) > > Speedwise, Blowfish and AES are similar, > > My understanding is that actually, blowfish is significantly slower. Go and run "openssl speed aes-128-cbc bf-cbc" on a number of machines and architectures. There is quite a bit of variation. -- Christian "naddy" Weisgerber na...@mips.inka.de
