AES (Rjindael) cipher algorithm broken?

AES may have been broken. Serpent, too. Or maybe not. In either case, there's no need to panic. Yet. But there might be soon. Maybe.

Some of the confusion stems from different definitions of "attack." To a cryptographer, an attack is anything that breaks the algorithm faster than brute force, even if it is completely impractical. To an engineer, an attack is something that is practical, or at least might be practical in a few years. An attack that breaks AES to a cryptographer might not to an engineer. The rest of the confusion stems from not being sure the attack actually works.

AES is the standard encryption algorithm that was chosen by a recent standards process to replace DES, which has been in use for years in both government and commercial environments. If it's seriously broken, it's bad news, since it has been included in the design of most commercial products making use of encryption.

This entry was published Sat Sep 24 10:43:35 CDT 2005 by TriggerFinger and last updated 2005-09-24 10:43:35.0. [Tweet]

comments powered by Disqus

Subscribe to Atom Feed

I am not a lawyer, and nothing on this site should be taken as legal advice.

This site is run on custom blog software and is being actively developed. Please be forgiving of errors.

This website is an Amazon affiliate and will receive financial compensation for products purchased from Amazon through links on this site.