Hello, i m using the VPN solution openVPN, and OPENVPN provides quite many cipher algorithm,the default one is blowfish. here is the list: DES-CBC 64 bit default key (fixed) RC2-CBC 128 bit default key (variable) DES-EDE-CBC 128 bit default key (fixed) DES-EDE3-CBC 192 bit default key (fixed) DESX-CBC 192 bit default key (fixed) BF-CBC 128 bit default key (variable) RC2-40-CBC 40 bit default key (variable) CAST5-CBC 128 bit default key (variable) RC2-64-CBC 64 bit default key (variable) AES-128-CBC 128 bit default key (fixed) AES-192-CBC 192 bit default key (fixed) AES-256-CBC 256 bit default key (fixed) CBC mode is recommended but it seems they are all CBC anyway. Which one do you recommand me? i want an efficient and robust cipher algorithm. best regards sebastien _________________________________________________________________ MSN Messenger : discutez en direct avec vos amis ! http://www.msn.fr/msger/default.asp
Hello, Sébastien V wrote:
Hello, i m using the VPN solution openVPN, and OPENVPN provides quite many cipher algorithm,the default one is blowfish. here is the list:
[snip]
Which one do you recommand me? i want an efficient and robust cipher algorithm.
XOR is really fast, one time pads are really secure. Decide yourself. Only you know how much the data is worth that you want to protect and what hardware you can use. Ask yourself: - Is there a reason not to use the default settings? If so, what reason and which of the other algorithms can fullfill my requirements? - Is the price for my solution (other hardware, more time to en-/decrypt, administration) in an arguable relation to the loss of confidentiality? GTi
participants (2)
-
list@nolog.org
-
Sébastien V