Somebody please correct me if I'm wrong. Blowfish has been extensively analyzed since 1993. It is believed to be secure.
As far as the 64 bit blocks go: most solid encryption programs generally use a block chaining mode, to group multiple blocks together. Encrypt one block, XOR it with the next, etc. Even if collisions were found in the ciphertext, the most the attacker could deduce is that they represent the same plaintext block. If the attacker didn't previously know what that ciphertext block meant, it wouldn't really do them any good. I think Blowfish is a great choice for the encryption algorithm. Besides, factor this into the mix: Blowfish uses a key up to 448 bits. Twofish goes up to 256 bits, as does AES. AES may or may not have been broken based on the XSL attack. So the key size is an atvantage over Twofish, and the years of review makes for an advantage over AES. Just $16.99/mo. or less. dsl.yahoo.com
