Bugtraq mailing list archives

Re: CISCO PIX Vulnerability

From: Damir.Rajnovic () EUROCERT NET (Damir Rajnovic)
Date: Thu, 4 Jun 1998 07:54:00 +0100


Hi there,

At 19:25 -0700 3/6/98, David Wagner wrote:

In article <v03007801b19b0b9bd8f5@[194.82.141.242]> you write:

CISCO PIX Private Link feature uses DES key that is only 48 bits in length.

[...]

Apparently, knowing what bits are fixed will not bring attacker
any additional 'gain' in breaking a DES. At least I was told that by
people from sci.crypt group.


Either the sci.crypt folks were confused, or I am.  With only 48
unknown bits in the DES key, you can break the encryption 2^8 = 256
times faster than you can break DES.  This is a serious weakness.


Probably I was unclear. What I want to say is that it does not matter
what bits inside key are known. It is the same if you know that first
8 bits are 0 or middle or end bits. In all cases you must put the same
effort to break encryption. In that sense there is no 'additional gain'
knowing WHAT bits are fixed it does matter only that some are fixed.

Cheers,

Gaus


---------------------------------------------------------------
EuroCERT                                tel: (+44 1235) 822 382
c/o UKERNA                              fax: (+44 1235) 822 398
Atlas Centre
Chilton, Didcot
Oxfordshire OX11 0QS, UK

Current thread:

CISCO PIX Vulnerability Damir Rajnovic (Jun 03)
- Re: CISCO PIX Vulnerability Rick Smith (Jun 10)
- <Possible follow-ups>
- Re: CISCO PIX Vulnerability David Wagner (Jun 03)
  - Re: CISCO PIX Vulnerability Damir Rajnovic (Jun 03)
  - FreeBSD Security Advisory: FreeBSD-SA-98:05.nfs Aleph One (Jun 04)
    - Re: FreeBSD Security Advisory: FreeBSD-SA-98:05.nfs matthew green (Jun 04)
  - Huge security hole in SDRC IDEAS MS6 cad system. Sven-Ove Westberg (Jun 05)
  - Security flaw in Accelerated-X 4.1 Stefan Laudat (Jun 08)
- Re: CISCO PIX Vulnerability Damir Rajnovic (Jun 05)
- Re: CISCO PIX Vulnerability Jamie Thain (Jun 20)