Bruno Treguier wrote:
> I've got another question about 3DES and SSL: isn't the SSL protocol limited
> to a 128 bit keylength ? If this is true, how is 3DES handled ? Is the 3rd
> key only partially used ? Or is the "key1, key2, key1" scheme used ?
The simple answer is that SSL isn't limited to 128 bit, though people
tend to talk about it as if it were because there are no ciperhsuites
defined with an effective strength over 128 bits. 3DES actually has a
168 bit key (well, 192 if you include parity).
Cheers,
Ben.
--
http://www.apache-ssl.org/ben.html
"My grandfather once told me that there are two kinds of people: those
who work and those who take the credit. He told me to try to be in the
first group; there was less competition there."
- Indira Gandhi
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
