Well, this is something I asked for about a year ago, multiple encryption. You could think of it as either done in a) several layers or b) interleaved. a) means the whole partition/container gets encrypted in aes, then again in blowfish, then again in twofish,........ b) means the wohle parition/container is split up in 512byte blocks with first block encrypted in aes, second in blowfish, thrid in twofish,....till you start this cycle of algos again with some block a) is more secure but slower depending on number of layers b) might have problems with truncation or cycling of the algos both versions will consume more memory in the cpu, lead to a bigger loop.ko I can´t tell if it´s worth to do something like this. The key-setup gets rather complex.... Regards, Peter Von: Christian <evil@xxxxxxxxxx> schrieb: > well, at least in "Applied Cryptography" he's saying that > double/multiple encryption is a way to *increase* security: > > http://friedo.szm.sk/krypto/AC/ch15/15-01.html > > so, i if a message is encrypted with different algorithms, each one has > to be broken (a "defect" has to be found). > > if it's encrypted with the same algo and a defect is found, i'd say > encryption was not weakened by the (double-) encryption but only the > level of "feeling secure, because i double encrypted" has fallen more > rapidly as expected. > > *if* multiple encryption would actually weaken an algotithm, then we'd > have found new attacks... > > > You can probably find this thread on google groups if you search for > > Bruce Schneider's posts - perhaps post a link if you can find it. > > Schneier says "it's fine" ;-) > -> 380cb79d.5790473@xxxxxxxxxxxxx > > "Use multiple encryption wherever you want: AES + whatever other > algorithms you choose. But please let AES be one algorithm." -- Lust, ein paar Euro nebenbei zu verdienen? Ohne Kosten, ohne Risiko! Satte Provisionen für GMX Partner: http://www.gmx.net/de/go/partner - Linux-crypto: cryptography in and on the Linux system Archive: http://mail.nl.linux.org/linux-crypto/
