Glossary for the Linux FreeS/WAN project

Entries are in alphabetical order. Some entries are only one line or one paragraph long. Others run to several paragraphs. I have tried to put the essential information in the first paragraph so you can skip the other paragraphs if that seems appropriate.

Jump to a letter in the glossary

Other glossaries

Other glossaries which overlap this one include:

• The VPN Consortium's glossary of VPN terms.
• glossary portion of the Cryptography FAQ
• an extensive crytographic glossary on Terry Ritter's page.
• The NSA's glossary of computer security on the SANS Institute site.
• a small glossary for Internet Security at PC magazine
• The glossary from Richard Smith's book Internet Cryptography

Several Internet glossaries are available as RFCs:

• Glossary of Networking Terms
• Internet User's Glossary
• Internet Security Glossary

More general glossary or dictionary information:

• Free Online Dictionary of Computing (FOLDOC)
  • North America
  • Europe
  • Japan

  There are many more mirrors of this dictionary.

• The Jargon File, the definitive resource for hacker slang and folklore
  • North America
  • Holland
  • home page

  There are also many mirrors of this. See the home page for a list.

• A general technology glossary
• An online dictionary resource page with pointers to many dictionaries for many languages
• A search engine that accesses several hundred online dictionaries
• O'Reilly Dictionary of PC Hardware and Data Communications Terms
• Connected Internet encyclopedia
• whatis.com

Definitions

0

3DES (Triple DES)

Using three DES encryptions on a single data block, with at least two different keys, to get higher security than is available from a single DES pass. The three-key version of 3DES is the default encryption algorithm for Linux FreeS/WAN.

IPsec always does 3DES with three different keys, as required by RFC 2451. For an explanation of the two-key variant, see two key triple DES. Both use an EDE encrypt-decrypt-encrpyt sequence of operations.

Single DES is insecure.

Double DES is ineffective. Using two 56-bit keys, one might expect an attacker to have to do 2¹¹² work to break it. In fact, only 2⁵⁷ work is required with a meet-in-the-middle attack, though a large amount of memory is also required. Triple DES is vulnerable to a similar attack, but that just reduces the work factor from the 2¹⁶⁸ one might expect to 2¹¹². That provides adequate protection against brute force attacks, and no better attack is known.

3DES can be somewhat slow compared to other ciphers. It requires three DES encryptions per block. DES was designed for hardware implementation and includes some operations which are difficult in software. However, the speed we get is quite acceptable for many uses. See our performance document for details.

A

Active attack

An attack in which the attacker does not merely eavesdrop (see passive attack) but takes action to change, delete, reroute, add, forge or divert data. Perhaps the best-known active attack is man-in-the-middle. In general, authentication is a useful defense against active attacks.

AES

The Advanced Encryption Standard, a new block cipher standard to replace DES being developed by NIST, the US National Institute of Standards and Technology. DES used 64-bit blocks and a 56-bit key. AES ciphers use a 128-bit block and are required to support 128, 192 and 256-bit keys. Some of them support other sizes as well. The larger block size helps resist birthday attacks while the large key size prevents brute force attacks.

Fifteen proposals meeting NIST's basic criteria were submitted in 1998 and subjected to intense discussion and analysis, "round one" evaluation. In August 1999, NIST narrowed the field to five "round two" candidates:

• Mars from IBM
• RC6 from RSA
• Rijndael from two Belgian researchers
• Serpent, a British-Norwegian-Israeli research collaboration
• Twofish from the consulting firm Counterpane

Three of the five finalists -- Rijndael, Serpent and Twofish -- have completely open licenses.

In October 2000, NIST announced the winner -- Rijndael.

For more information, see:

• NIST's AES home page
• the Block Cipher Lounge AES page
• Brian Gladman's code and benchmarks
• Helger Lipmaa's survey of implementations

Adding one or more AES ciphers to Linux FreeS/WAN would be a useful undertaking. Likely one would add all three of the Round Two candidates with good licenses. A complication is that our code is built for a 64-bit block cipher and AES uses a 128-bit block. Volunteers via the mailing lists would be welcome.

AH

The IPsec Authentication Header, added after the IP header. For details, see our IPsec document and/or RFC 2402.

Alice and Bob

A and B, the standard example users in writing on cryptography and coding theory. Carol and Dave join them for protocols which require more players.

Bruce Schneier extends these with many others such as Eve the Eavesdropper and Victor the Verifier. His extensions seem to be in the process of becoming standard as well. See page 23 of Applied Cryptography

Alice and Bob have an amusing biography on the web.

ARPA

see DARPA

ASIO

Australian Security Intelligence Organisation.

Asymmetric cryptography

See public key cryptography.

Authentication

Ensuring that a message originated from the expected sender and has not been altered on route. IPsec uses authentication in two places:

• peer authentication, authenticating the players in IKE brms
• Internet User's Glossary
• Internet Security Glossary

More general glossary or dictionary information:

• Free Online Dictionary of Computing (FOLDOC)
  • North America
  • Europe
  • Japan

  There are many more mirrors of this dictionary.

• The Jargon File, the definitive resource for hacker slang and folklore
  • North America
  • Holland
  • home page

  There are also many mirrors of this. See the home page for a list.

• A general technology glossary
• An online dictionary resource page with pointers to many dictionaries for many languages
• A search engine that accesses several hundred online dictionaries
• O'Reilly Dictionary of PC Hardware and Data Communications Terms
• Connected Internet encyclopedia
• whatis.com

---

Definitions

0

3DES (Triple DES)

Using three DES encryptions on a single data block, with at least two different keys, to get higher security than is available from a single DES pass. The three-key version of 3DES is the default encryption algorithm for Linux FreeS/WAN.

IPsec always does 3DES with three different keys, as required by RFC 2451. For an explanation of the two-key variant, see two key triple DES. Both use an EDE encrypt-decrypt-encrpyt sequence of operations.

Single DES is insecure.

Double DES is ineffective. Using two 56-bit keys, one might expect an attacker to have to do 2¹¹² work to break it. In fact, only 2⁵⁷ work is required with a meet-in-the-middle attack, though a large amount of memory is also required. Triple DES is vulnerable to a similar attack, but that just reduces the work factor from the 2¹⁶⁸ one might expect to 2¹¹². That provides adequate protection against brute force attacks, and no better attack is known.

3DES can be somewhat slow compared to other ciphers. It requires three DES encryptions per block. DES was designed for hardware implementation and includes some operations which are difficult in software. However, the speed we get is quite acceptable for many uses. See our performance document for details.

A

Active attack

An attack in which the attacker does not merely eavesdrop (see passive attack) but takes action to change, delete, reroute, add, forge or divert data. Perhaps the best-known active attack is man-in-the-middle. In general, authentication is a useful defense against active attacks.

AES

The Advanced Encryption Standard, a new block cipher standard to replace DES being developed by NIST, the US National Institute of Standards and Technology. DES used 64-bit blocks and a 56-bit key. AES ciphers use a 128-bit block and are required to support 128, 192 and 256-bit keys. Some of them support other sizes as well. The larger block size helps resist birthday attacks while the large key size prevents brute force attacks.

Fifteen proposals meeting NIST's basic criteria were submitted in 1998 and subjected to intense discussion and analysis, "round one" evaluation. In August 1999, NIST narrowed the field to five "round two" candidates:

• Mars from IBM
• RC6 from RSA
• Rijndael from two Belgian researchers
• Serpent, a British-Norwegian-Israeli research collaboration
• Twofish from the consulting firm Counterpane

Three of the five finalists -- Rijndael, Serpent and Twofish -- have completely open licenses.

In October 2000, NIST announced the winner -- Rijndael.

For more information, see:

• NIST's AES home page
• the Block Cipher Lounge AES page
• Brian Gladman's code and benchmarks
• Helger Lipmaa's survey of implementations

Adding one or more AES ciphers to Linux FreeS/WAN would be a useful undertaking. Likely one would add all three of the Round Two candidates with good licenses. A complication is that our code is built for a 64-bit block cipher and AES uses a 128-bit block. Volunteers via the mailing lists would be welcome.

AH

The IPsec Authentication Header, added after the IP header. For details, see our IPsec document and/or RFC 2402.

Alice and Bob

A and B, the standard example users in writing on cryptography and coding theory. Carol and Dave join them for protocols which require more players.

Bruce Schneier extends these with many others such as Eve the Eavesdropper and Victor the Verifier. His extensions seem to be in the process of becoming standard as well. See page 23 of Applied Cryptography

Alice and Bob have an amusing biography on the web.

ARPA

see DARPA

ASIO

Australian Security Intelligence Organisation.

Asymmetric cryptography

See public key cryptography.

Authentication

Ensuring that a message originated from the expected sender and has not been altered on route. IPsec uses authentication in two places:

• peer authentication, authenticating the players in IKE brms
• Internet User's Glossary
• Internet Security Glossary

More general glossary or dictionary information:

• Free Online Dictionary of Computing (FOLDOC)
  • North America
  • Europe
  • Japan

  There are many more mirrors of this dictionary.

• The Jargon File, the definitive resource for hacker slang and folklore
  • North America
  • Holland
  • home page

  There are also many mirrors of this. See the home page for a list.

• A general technology glossary
• An online dictionary resource page with pointers to many dictionaries for many languages
• A search engine that accesses several hundred online dictionaries
• O'Reilly Dictionary of PC Hardware and Data Communications Terms
• Connected Internet encyclopedia
• whatis.com

---

Definitions

0

3DES (Triple DES)

Using three DES encryptions on a single data block, with at least two different keys, to get higher security than is available from a single DES pass. The three-key version of 3DES is the default encryption algorithm for Linux FreeS/WAN.

IPsec always does 3DES with three different keys, as required by RFC 2451. For an explanation of the two-key variant, see two key triple DES. Both use an EDE encrypt-decrypt-encrpyt sequence of operations.

Single DES is insecure.

Double DES is ineffective. Using two 56-bit keys, one might expect an attacker to have to do 2¹¹² work to break it. In fact, only 2⁵⁷ work is required with a meet-in-the-middle attack, though a large amount of memory is also required. Triple DES is vulnerable to a similar attack, but that just reduces the work factor from the 2¹⁶⁸ one might expect to 2¹¹². That provides adequate protection against brute force attacks, and no better attack is known.

3DES can be somewhat slow compared to other ciphers. It requires three DES encryptions per block. DES was designed for hardware implementation and includes some operations which are difficult in software. However, the speed we get is quite acceptable for many uses. See our performance document for details.

A

Active attack

An attack in which the attacker does not merely eavesdrop (see passive attack) but takes action to change, delete, reroute, add, forge or divert data. Perhaps the best-known active attack is man-in-the-middle. In general, authentication is a useful defense against active attacks.

AES

The Advanced Encryption Standard, a new block cipher standard to replace DES being developed by NIST, the US National Institute of Standards and Technology. DES used 64-bit blocks and a 56-bit key. AES ciphers use a 128-bit block and are required to support 128, 192 and 256-bit keys. Some of them support other sizes as well. The larger block size helps resist birthday attacks while the large key size prevents brute force attacks.

Fifteen proposals meeting NIST's basic criteria were submitted in 1998 and subjected to intense discussion and analysis, "round one" evaluation. In August 1999, NIST narrowed the field to five "round two" candidates:

• Mars from IBM
• RC6 from RSA
• Rijndael from two Belgian researchers
• Serpent, a British-Norwegian-Israeli research collaboration
• Twofish from the consulting firm Counterpane

Three of the five finalists -- Rijndael, Serpent and Twofish -- have completely open licenses.

In October 2000, NIST announced the winner -- Rijndael.

For more information, see:

• NIST's AES home page
• the Block Cipher Lounge AES page
• Brian Gladman's code and benchmarks
• Helger Lipmaa's survey of implementations

Adding one or more AES ciphers to Linux FreeS/WAN would be a useful undertaking. Likely one would add all three of the Round Two candidates with good licenses. A complication is that our code is built for a 64-bit block cipher and AES uses a 128-bit block. Volunteers via the mailing lists would be welcome.

AH

The IPsec Authentication Header, added after the IP header. For details, see our IPsec document and/or RFC 2402.

Alice and Bob

A and B, the standard example users in writing on cryptography and coding theory. Carol and Dave join them for protocols which require more players.

Bruce Schneier extends these with many others such as Eve the Eavesdropper and Victor the Verifier. His extensions seem to be in the process of becoming standard as well. See page 23 of Applied Cryptography

Alice and Bob have an amusing biography on the web.

ARPA

see DARPA

ASIO

Australian Security Intelligence Organisation.

Asymmetric cryptography

See public key cryptography.

Authentication

Ensuring that a message originated from the expected sender and has not been altered on route. IPsec uses authentication in two places:

• peer authentication, authenticating the players in IKE brms
• Internet User's Glossary
• Internet Security Glossary

More general glossary or dictionary information:

• Free Online Dictionary of Computing (FOLDOC)
  • North America
  • Europe
  • Japan

  There are many more mirrors of this dictionary.

• The Jargon File, the definitive resource for hacker slang and folklore
  • North America
  • Holland
  • home page

  There are also many mirrors of this. See the home page for a list.

• A general technology glossary
• An online dictionary resource page with pointers to many dictionaries for many languages
• A search engine that accesses several hundred online dictionaries
• O'Reilly Dictionary of PC Hardware and Data Communications Terms
• Connected Internet encyclopedia
• whatis.com

---

Definitions

0

3DES (Triple DES)

Using three DES encryptions on a single data block, with at least two different keys, to get higher security than is available from a single DES pass. The three-key version of 3DES is the default encryption algorithm for Linux FreeS/WAN.

IPsec always does 3DES with three different keys, as required by RFC 2451. For an explanation of the two-key variant, see two key triple DES. Both use an EDE encrypt-decrypt-encrpyt sequence of operations.

Single DES is insecure.

Double DES is ineffective. Using two 56-bit keys, one might expect an attacker to have to do 2¹¹² work to break it. In fact, only 2⁵⁷ work is required with a meet-in-the-middle attack, though a large amount of memory is also required. Triple DES is vulnerable to a similar attack, but that just reduces the work factor from the 2¹⁶⁸ one might expect to 2¹¹². That provides adequate protection against brute force attacks, and no better attack is known.

3DES can be somewhat slow compared to other ciphers. It requires three DES encryptions per block. DES was designed for hardware implementation and includes some operations which are difficult in software. However, the speed we get is quite acceptable for many uses. See our performance document for details.

A

Active attack

An attack in which the attacker does not merely eavesdrop (see passive attack) but takes action to change, delete, reroute, add, forge or divert data. Perhaps the best-known active attack is man-in-the-middle. In general, authentication is a useful defense against active attacks.

AES

The Advanced Encryption Standard, a new block cipher standard to replace DES being developed by NIST, the US National Institute of Standards and Technology. DES used 64-bit blocks and a 56-bit key. AES ciphers use a 128-bit block and are required to support 128, 192 and 256-bit keys. Some of them support other sizes as well. The larger block size helps resist birthday attacks while the large key size prevents brute force attacks.

Fifteen proposals meeting NIST's basic criteria were submitted in 1998 and subjected to intense discussion and analysis, "round one" evaluation. In August 1999, NIST narrowed the field to five "round two" candidates:

• Mars from IBM
• RC6 from RSA
• Rijndael from two Belgian researchers
• Serpent, a British-Norwegian-Israeli research collaboration
• Twofish from the consulting firm Counterpane

Three of the five finalists -- Rijndael, Serpent and Twofish -- have completely open licenses.

In October 2000, NIST announced the winner -- Rijndael.

For more information, see:

• NIST's AES home page
• the Block Cipher Lounge AES page
• Brian Gladman's code and benchmarks
• Helger Lipmaa's survey of implementations

Adding one or more AES ciphers to Linux FreeS/WAN would be a useful undertaking. Likely one would add all three of the Round Two candidates with good licenses. A complication is that our code is built for a 64-bit block cipher and AES uses a 128-bit block. Volunteers via the mailing lists would be welcome.

AH

The IPsec Authentication Header, added after the IP header. For details, see our IPsec document and/or RFC 2402.

Alice and Bob

A and B, the standard example users in writing on cryptography and coding theory. Carol and Dave join them for protocols which require more players.

Bruce Schneier extends these with many others such as Eve the Eavesdropper and Victor the Verifier. His extensions seem to be in the process of becoming standard as well. See page 23 of Applied Cryptography

Alice and Bob have an amusing biography on the web.

ARPA

see DARPA

ASIO

Australian Security Intelligence Organisation.

Asymmetric cryptography

See public key cryptography.

Authentication

Ensuring that a message originated from the expected sender and has not been altered on route. IPsec uses authentication in two places:

• peer authentication, authenticating the players in IKE brms
• Internet User's Glossary
• Internet Security Glossary

More general glossary or dictionary information:

• Free Online Dictionary of Computing (FOLDOC)
  • North America
  • Europe
  • Japan

  There are many more mirrors of this dictionary.

• The Jargon File, the definitive resource for hacker slang and folklore
  • North America
  • Holland
  • home page

  There are also many mirrors of this. See the home page for a list.

• A general technology glossary
• An online dictionary resource page with pointers to many dictionaries for many languages
• A search engine that accesses several hundred online dictionaries
• O'Reilly Dictionary of PC Hardware and Data Communications Terms
• Connected Internet encyclopedia
• whatis.com

---

Definitions

0

3DES (Triple DES)

Using three DES encryptions on a single data block, with at least two different keys, to get higher security than is available from a single DES pass. The three-key version of 3DES is the default encryption algorithm for Linux FreeS/WAN.

IPsec always does 3DES with three different keys, as required by RFC 2451. For an explanation of the two-key variant, see two key triple DES. Both use an EDE encrypt-decrypt-encrpyt sequence of operations.

Single DES is insecure.

Double DES is ineffective. Using two 56-bit keys, one might expect an attacker to have to do 2¹¹² work to break it. In fact, only 2⁵⁷ work is required with a meet-in-the-middle attack, though a large amount of memory is also required. Triple DES is vulnerable to a similar attack, but that just reduces the work factor from the 2¹⁶⁸ one might expect to 2¹¹². That provides adequate protection against brute force attacks, and no better attack is known.

3DES can be somewhat slow compared to other ciphers. It requires three DES encryptions per block. DES was designed for hardware implementation and includes some operations which are difficult in software. However, the speed we get is quite acceptable for many uses. See our performance document for details.

A

Active attack

An attack in which the attacker does not merely eavesdrop (see passive attack) but takes action to change, delete, reroute, add, forge or divert data. Perhaps the best-known active attack is man-in-the-middle. In general, authentication is a useful defense against active attacks.

AES

The Advanced Encryption Standard, a new block cipher standard to replace DES being developed by NIST, the US National Institute of Standards and Technology. DES used 64-bit blocks and a 56-bit key. AES ciphers use a 128-bit block and are required to support 128, 192 and 256-bit keys. Some of them support other sizes as well. The larger block size helps resist birthday attacks while the large key size prevents brute force attacks.

Fifteen proposals meeting NIST's basic criteria were submitted in 1998 and subjected to intense discussion and analysis, "round one" evaluation. In August 1999, NIST narrowed the field to five "round two" candidates:

• Mars from IBM
• RC6 from RSA
• Rijndael from two Belgian researchers
• Serpent, a British-Norwegian-Israeli research collaboration
• Twofish from the consulting firm Counterpane

Three of the five finalists -- Rijndael, Serpent and Twofish -- have completely open licenses.

In October 2000, NIST announced the winner -- Rijndael.

For more information, see:

• NIST's AES home page
• the Block Cipher Lounge AES page
• Brian Gladman's code and benchmarks
• Helger Lipmaa's survey of implementations

Adding one or more AES ciphers to Linux FreeS/WAN would be a useful undertaking. Likely one would add all three of the Round Two candidates with good licenses. A complication is that our code is built for a 64-bit block cipher and AES uses a 128-bit block. Volunteers via the mailing lists would be welcome.

AH

The IPsec Authentication Header, added after the IP header. For details, see our IPsec document and/or RFC 2402.

Alice and Bob

A and B, the standard example users in writing on cryptography and coding theory. Carol and Dave join them for protocols which require more players.

Bruce Schneier extends these with many others such as Eve the Eavesdropper and Victor the Verifier. His extensions seem to be in the process of becoming standard as well. See page 23 of Applied Cryptography

Alice and Bob have an amusing biography on the web.

ARPA

see DARPA

ASIO

Australian Security Intelligence Organisation.

Asymmetric cryptography

See public key cryptography.

Authentication

Ensuring that a message originated from the expected sender and has not been altered on route. IPsec uses authentication in two places:

• peer authentication, authenticating the players in IKE brms
• Internet User's Glossary
• Internet Security Glossary

More general glossary or dictionary information:

• Free Online Dictionary of Computing (FOLDOC)
  • North America
  • Europe
  • Japan

  There are many more mirrors of this dictionary.

• The Jargon File, the definitive resource for hacker slang and folklore
  • North America
  • Holland
  • home page

  There are also many mirrors of this. See the home page for a list.

• A general technology glossary
• An online dictionary resource page with pointers to many dictionaries for many languages
• A search engine that accesses several hundred online dictionaries
• O'Reilly Dictionary of PC Hardware and Data Communications Terms
• Connected Internet encyclopedia
• whatis.com

---

Definitions

0

3DES (Triple DES)

Using three DES encryptions on a single data block, with at least two different keys, to get higher security than is available from a single DES pass. The three-key version of 3DES is the default encryption algorithm for Linux FreeS/WAN.

IPsec always does 3DES with three different keys, as required by RFC 2451. For an explanation of the two-key variant, see two key triple DES. Both use an EDE encrypt-decrypt-encrpyt sequence of operations.

Single DES is insecure.

Double DES is ineffective. Using two 56-bit keys, one might expect an attacker to have to do 2¹¹² work to break it. In fact, only 2⁵⁷ work is required with a meet-in-the-middle attack, though a large amount of memory is also required. Triple DES is vulnerable to a similar attack, but that just reduces the work factor from the 2¹⁶⁸ one might expect to 2¹¹². That provides adequate protection against brute force attacks, and no better attack is known.

3DES can be somewhat slow compared to other ciphers. It requires three DES encryptions per block. DES was designed for hardware implementation and includes some operations which are difficult in software. However, the speed we get is quite acceptable for many uses. See our performance document for details.

A

Active attack

An attack in which the attacker does not merely eavesdrop (see passive attack) but takes action to change, delete, reroute, add, forge or divert data. Perhaps the best-known active attack is man-in-the-middle. In general, authentication is a useful defense against active attacks.

AES

The Advanced Encryption Standard, a new block cipher standard to replace DES being developed by NIST, the US National Institute of Standards and Technology. DES used 64-bit blocks and a 56-bit key. AES ciphers use a 128-bit block and are required to support 128, 192 and 256-bit keys. Some of them support other sizes as well. The larger block size helps resist birthday attacks while the large key size prevents brute force attacks.

Fifteen proposals meeting NIST's basic criteria were submitted in 1998 and subjected to intense discussion and analysis, "round one" evaluation. In August 1999, NIST narrowed the field to five "round two" candidates:

• Mars from IBM
• RC6 from RSA
• Rijndael from two Belgian researchers
• Serpent, a British-Norwegian-Israeli research collaboration
• Twofish from the consulting firm Counterpane

Three of the five finalists -- Rijndael, Serpent and Twofish -- have completely open licenses.

In October 2000, NIST announced the winner -- Rijndael.

For more information, see:

• NIST's AES home page
• the Block Cipher Lounge AES page
• Brian Gladman's code and benchmarks
• Helger Lipmaa's survey of implementations

Adding one or more AES ciphers to Linux FreeS/WAN would be a useful undertaking. Likely one would add all three of the Round Two candidates with good licenses. A complication is that our code is built for a 64-bit block cipher and AES uses a 128-bit block. Volunteers via the mailing lists would be welcome.

AH

The IPsec Authentication Header, added after the IP header. For details, see our IPsec document and/or RFC 2402.

Alice and Bob

A and B, the standard example users in writing on cryptography and coding theory. Carol and Dave join them for protocols which require more players.

Bruce Schneier extends these with many others such as Eve the Eavesdropper and Victor the Verifier. His extensions seem to be in the process of becoming standard as well. See page 23 of Applied Cryptography

Alice and Bob have an amusing biography on the web.

ARPA

see DARPA

ASIO

Australian Security Intelligence Organisation.

Asymmetric cryptography

See public key cryptography.

Authentication

Ensuring that a message originated from the expected sender and has not been altered on route. IPsec uses authentication in two places:

• peer authentication, authenticating the players in IKE brms
• Internet User's Glossary
• Internet Security Glossary

More general glossary or dictionary information:

• Free Online Dictionary of Computing (FOLDOC)
  • North America
  • Europe
  • Japan

  There are many more mirrors of this dictionary.

• The Jargon File, the definitive resource for hacker slang and folklore
  • North America
  • Holland
  • home page

  There are also many mirrors of this. See the home page for a list.

• A general technology glossary
• An online dictionary resource page with pointers to many dictionaries for many languages
• A search engine that accesses several hundred online dictionaries
• O'Reilly Dictionary of PC Hardware and Data Communications Terms
• Connected Internet encyclopedia
• whatis.com

---

Definitions

0

3DES (Triple DES)

Using three DES encryptions on a single data block, with at least two different keys, to get higher security than is available from a single DES pass. The three-key version of 3DES is the default encryption algorithm for Linux FreeS/WAN.

IPsec always does 3DES with three different keys, as required by RFC 2451. For an explanation of the two-key variant, see two key triple DES. Both use an EDE encrypt-decrypt-encrpyt sequence of operations.

Single DES is insecure.

Double DES is ineffective. Using two 56-bit keys, one might expect an attacker to have to do 2¹¹² work to break it. In fact, only 2⁵⁷ work is required with a meet-in-the-middle attack, though a large amount of memory is also required. Triple DES is vulnerable to a similar attack, but that just reduces the work factor from the 2¹⁶⁸ one might expect to 2¹¹². That provides adequate protection against brute force attacks, and no better attack is known.

3DES can be somewhat slow compared to other ciphers. It requires three DES encryptions per block. DES was designed for hardware implementation and includes some operations which are difficult in software. However, the speed we get is quite acceptable for many uses. See our performance document for details.

A

Active attack

An attack in which the attacker does not merely eavesdrop (see passive attack) but takes action to change, delete, reroute, add, forge or divert data. Perhaps the best-known active attack is man-in-the-middle. In general, authentication is a useful defense against active attacks.

AES

The Advanced Encryption Standard, a new block cipher standard to replace DES being developed by NIST, the US National Institute of Standards and Technology. DES used 64-bit blocks and a 56-bit key. AES ciphers use a 128-bit block and are required to support 128, 192 and 256-bit keys. Some of them support other sizes as well. The larger block size helps resist birthday attacks while the large key size prevents brute force attacks.

Fifteen proposals meeting NIST's basic criteria were submitted in 1998 and subjected to intense discussion and analysis, "round one" evaluation. In August 1999, NIST narrowed the field to five "round two" candidates:

• Mars from IBM
• RC6 from RSA
• Rijndael from two Belgian researchers
• Serpent, a British-Norwegian-Israeli research collaboration
• Twofish from the consulting firm Counterpane

Three of the five finalists -- Rijndael, Serpent and Twofish -- have completely open licenses.

In October 2000, NIST announced the winner -- Rijndael.

For more information, see:

• NIST's AES home page
• the Block Cipher Lounge AES page
• Brian Gladman's code and benchmarks
• Helger Lipmaa's survey of implementations

Adding one or more AES ciphers to Linux FreeS/WAN would be a useful undertaking. Likely one would add all three of the Round Two candidates with good licenses. A complication is that our code is built for a 64-bit block cipher and AES uses a 128-bit block. Volunteers via the mailing lists would be welcome.

AH

The IPsec Authentication Header, added after the IP header. For details, see our IPsec document and/or RFC 2402.

Alice and Bob

A and B, the standard example users in writing on cryptography and coding theory. Carol and Dave join them for protocols which require more players.

Bruce Schneier extends these with many others such as Eve the Eavesdropper and Victor the Verifier. His extensions seem to be in the process of becoming standard as well. See page 23 of Applied Cryptography

Alice and Bob have an amusing biography on the web.

ARPA

see DARPA

ASIO

Australian Security Intelligence Organisation.

Asymmetric cryptography

See public key cryptography.

Authentication

Ensuring that a message originated from the expected sender and has not been altered on route. IPsec uses authentication in two places:

• peer authentication, authenticating the players in IKE brms
• Internet User's Glossary
• Internet Security Glossary

More general glossary or dictionary information:

• Free Online Dictionary of Computing (FOLDOC)
  • North America
  • Europe
  • Japan

  There are many more mirrors of this dictionary.

• The Jargon File, the definitive resource for hacker slang and folklore
  • North America
  • Holland
  • home page

  There are also many mirrors of this. See the home page for a list.

• A general technology glossary
• An online dictionary resource page with pointers to many dictionaries for many languages
• A search engine that accesses several hundred online dictionaries
• O'Reilly Dictionary of PC Hardware and Data Communications Terms
• Connected Internet encyclopedia
• whatis.com

---

Definitions

0

3DES (Triple DES)

Using three DES encryptions on a single data block, with at least two different keys, to get higher security than is available from a single DES pass. The three-key version of 3DES is the default encryption algorithm for Linux FreeS/WAN.

IPsec always does 3DES with three different keys, as required by RFC 2451. For an explanation of the two-key variant, see two key triple DES. Both use an EDE encrypt-decrypt-encrpyt sequence of operations.

Single DES is insecure.

Double DES is ineffective. Using two 56-bit keys, one might expect an attacker to have to do 2¹¹² work to break it. In fact, only 2⁵⁷ work is required with a meet-in-the-middle attack, though a large amount of memory is also required. Triple DES is vulnerable to a similar attack, but that just reduces the work factor from the 2¹⁶⁸ one might expect to 2¹¹². That provides adequate protection against brute force attacks, and no better attack is known.

3DES can be somewhat slow compared to other ciphers. It requires three DES encryptions per block. DES was designed for hardware implementation and includes some operations which are difficult in software. However, the speed we get is quite acceptable for many uses. See our performance document for details.

A

Active attack

An attack in which the attacker does not merely eavesdrop (see passive attack) but takes action to change, delete, reroute, add, forge or divert data. Perhaps the best-known active attack is man-in-the-middle. In general, authentication is a useful defense against active attacks.

AES

The Advanced Encryption Standard, a new block cipher standard to replace DES being developed by NIST, the US National Institute of Standards and Technology. DES used 64-bit blocks and a 56-bit key. AES ciphers use a 128-bit block and are required to support 128, 192 and 256-bit keys. Some of them support other sizes as well. The larger block size helps resist birthday attacks while the large key size prevents brute force attacks.

Fifteen proposals meeting NIST's basic criteria were submitted in 1998 and subjected to intense discussion and analysis, "round one" evaluation. In August 1999, NIST narrowed the field to five "round two" candidates:

• Mars from IBM
• RC6 from RSA
• Rijndael from two Belgian researchers
• Serpent, a British-Norwegian-Israeli research collaboration
• Twofish from the consulting firm Counterpane

Three of the five finalists -- Rijndael, Serpent and Twofish -- have completely open licenses.

In October 2000, NIST announced the winner -- Rijndael.

For more information, see:

• NIST's AES home page
• the Block Cipher Lounge AES page
• Brian Gladman's code and benchmarks
• Helger Lipmaa's survey of implementations

Adding one or more AES ciphers to Linux FreeS/WAN would be a useful undertaking. Likely one would add all three of the Round Two candidates with good licenses. A complication is that our code is built for a 64-bit block cipher and AES uses a 128-bit block. Volunteers via the mailing lists would be welcome.

AH

The IPsec Authentication Header, added after the IP header. For details, see our IPsec document and/or RFC 2402.

Alice and Bob

A and B, the standard example users in writing on cryptography and coding theory. Carol and Dave join them for protocols which require more players.

Bruce Schneier extends these with many others such as Eve the Eavesdropper and Victor the Verifier. His extensions seem to be in the process of becoming standard as well. See page 23 of Applied Cryptography

Alice and Bob have an amusing biography on the web.

ARPA

see DARPA

ASIO

Australian Security Intelligence Organisation.

Asymmetric cryptography

See public key cryptography.

Authentication

Ensuring that a message originated from the expected sender and has not been altered on route. IPsec uses authentication in two places:

• peer authentication, authenticating the players in IKE brms
• Internet User's Glossary
• Internet Security Glossary

More general glossary or dictionary information:

• Free Online Dictionary of Computing (FOLDOC)
  • North America
  • Europe
  • Japan

  There are many more mirrors of this dictionary.

• The Jargon File, the definitive resource for hacker slang and folklore
  • North America
  • Holland
  • home page

  There are also many mirrors of this. See the home page for a list.

• A general technology glossary
• An online dictionary resource page with pointers to many dictionaries for many languages
• A search engine that accesses several hundred online dictionaries
• O'Reilly Dictionary of PC Hardware and Data Communications Terms
• Connected Internet encyclopedia
• whatis.com

---

Definitions

0

3DES (Triple DES)

Using three DES encryptions on a single data block, with at least two different keys, to get higher security than is available from a single DES pass. The three-key version of 3DES is the default encryption algorithm for Linux FreeS/WAN.

IPsec always does 3DES with three different keys, as required by RFC 2451. For an explanation of the two-key variant, see two key triple DES. Both use an EDE encrypt-decrypt-encrpyt sequence of operations.

Single DES is insecure.

Double DES is ineffective. Using two 56-bit keys, one might expect an attacker to have to do 2¹¹² work to break it. In fact, only 2⁵⁷ work is required with a meet-in-the-middle attack, though a large amount of memory is also required. Triple DES is vulnerable to a similar attack, but that just reduces the work factor from the 2¹⁶⁸ one might expect to 2¹¹². That provides adequate protection against brute force attacks, and no better attack is known.

3DES can be somewhat slow compared to other ciphers. It requires three DES encryptions per block. DES was designed for hardware implementation and includes some operations which are difficult in software. However, the speed we get is quite acceptable for many uses. See our performance document for details.

A

Active attack

An attack in which the attacker does not merely eavesdrop (see passive attack) but takes action to change, delete, reroute, add, forge or divert data. Perhaps the best-known active attack is man-in-the-middle. In general, authentication is a useful defense against active attacks.

AES

The Advanced Encryption Standard, a new block cipher standard to replace DES being developed by NIST, the US National Institute of Standards and Technology. DES used 64-bit blocks and a 56-bit key. AES ciphers use a 128-bit block and are required to support 128, 192 and 256-bit keys. Some of them support other sizes as well. The larger block size helps resist birthday attacks while the large key size prevents brute force attacks.

Fifteen proposals meeting NIST's basic criteria were submitted in 1998 and subjected to intense discussion and analysis, "round one" evaluation. In August 1999, NIST narrowed the field to five "round two" candidates:

• Mars from IBM
• RC6 from RSA
• Rijndael from two Belgian researchers
• Serpent, a British-Norwegian-Israeli research collaboration
• Twofish from the consulting firm Counterpane

Three of the five finalists -- Rijndael, Serpent and Twofish -- have completely open licenses.

In October 2000, NIST announced the winner -- Rijndael.

For more information, see:

• NIST's AES home page
• the Block Cipher Lounge AES page
• Brian Gladman's code and benchmarks
• Helger Lipmaa's survey of implementations

Adding one or more AES ciphers to Linux FreeS/WAN would be a useful undertaking. Likely one would add all three of the Round Two candidates with good licenses. A complication is that our code is built for a 64-bit block cipher and AES uses a 128-bit block. Volunteers via the mailing lists would be welcome.

AH

The IPsec Authentication Header, added after the IP header. For details, see our IPsec document and/or RFC 2402.

Alice and Bob

A and B, the standard example users in writing on cryptography and coding theory. Carol and Dave join them for protocols which require more players.

Bruce Schneier extends these with many others such as Eve the Eavesdropper and Victor the Verifier. His extensions seem to be in the process of becoming standard as well. See page 23 of Applied Cryptography

Alice and Bob have an amusing biography on the web.

ARPA

see DARPA

ASIO

Australian Security Intelligence Organisation.

Asymmetric cryptography

See public key cryptography.

Authentication

Ensuring that a message originated from the expected sender and has not been altered on route. IPsec uses authentication in two places:

• peer authentication, authenticating the players in IKE brms
• Internet User's Glossary
• Internet Security Glossary

More general glossary or dictionary information:

• Free Online Dictionary of Computing (FOLDOC)
  • North America
  • Europe
  • Japan

  There are many more mirrors of this dictionary.

• The Jargon File, the definitive resource for hacker slang and folklore
  • North America
  • Holland
  • home page

  There are also many mirrors of this. See the home page for a list.

• A general technology glossary
• An online dictionary resource page with pointers to many dictionaries for many languages
• A search engine that accesses several hundred online dictionaries
• O'Reilly Dictionary of PC Hardware and Data Communications Terms
• Connected Internet encyclopedia
• whatis.com

---

Definitions

0

3DES (Triple DES)

Using three DES encryptions on a single data block, with at least two different keys, to get higher security than is available from a single DES pass. The three-key version of 3DES is the default encryption algorithm for Linux FreeS/WAN.

IPsec always does 3DES with three different keys, as required by RFC 2451. For an explanation of the two-key variant, see two key triple DES. Both use an EDE encrypt-decrypt-encrpyt sequence of operations.

Single DES is insecure.

Double DES is ineffective. Using two 56-bit keys, one might expect an attacker to have to do 2¹¹² work to break it. In fact, only 2⁵⁷ work is required with a meet-in-the-middle attack, though a large amount of memory is also required. Triple DES is vulnerable to a similar attack, but that just reduces the work factor from the 2¹⁶⁸ one might expect to 2¹¹². That provides adequate protection against brute force attacks, and no better attack is known.

3DES can be somewhat slow compared to other ciphers. It requires three DES encryptions per block. DES was designed for hardware implementation and includes some operations which are difficult in software. However, the speed we get is quite acceptable for many uses. See our performance document for details.

A

Active attack

An attack in which the attacker does not merely eavesdrop (see passive attack) but takes action to change, delete, reroute, add, forge or divert data. Perhaps the best-known active attack is man-in-the-middle. In general, authentication is a useful defense against active attacks.

AES

The Advanced Encryption Standard, a new block cipher standard to replace DES being developed by NIST, the US National Institute of Standards and Technology. DES used 64-bit blocks and a 56-bit key. AES ciphers use a 128-bit block and are required to support 128, 192 and 256-bit keys. Some of them support other sizes as well. The larger block size helps resist birthday attacks while the large key size prevents brute force attacks.

Fifteen proposals meeting NIST's basic criteria were submitted in 1998 and subjected to intense discussion and analysis, "round one" evaluation. In August 1999, NIST narrowed the field to five "round two" candidates:

• Mars from IBM
• RC6 from RSA
• Rijndael from two Belgian researchers
• Serpent, a British-Norwegian-Israeli research collaboration
• Twofish from the consulting firm Counterpane

Three of the five finalists -- Rijndael, Serpent and Twofish -- have completely open licenses.

In October 2000, NIST announced the winner -- Rijndael.

For more information, see:

• NIST's AES home page
• the Block Cipher Lounge AES page
• Brian Gladman's code and benchmarks
• Helger Lipmaa's survey of implementations

Adding one or more AES ciphers to Linux FreeS/WAN would be a useful undertaking. Likely one would add all three of the Round Two candidates with good licenses. A complication is that our code is built for a 64-bit block cipher and AES uses a 128-bit block. Volunteers via the mailing lists would be welcome.

AH

The IPsec Authentication Header, added after the IP header. For details, see our IPsec document and/or RFC 2402.

Alice and Bob

A and B, the standard example users in writing on cryptography and coding theory. Carol and Dave join them for protocols which require more players.

Bruce Schneier extends these with many others such as Eve the Eavesdropper and Victor the Verifier. His extensions seem to be in the process of becoming standard as well. See page 23 of Applied Cryptography

Alice and Bob have an amusing biography on the web.

ARPA

see DARPA

ASIO

Australian Security Intelligence Organisation.

Asymmetric cryptography

See public key cryptography.

Authentication

Ensuring that a message originated from the expected sender and has not been altered on route. IPsec uses authentication in two places:

• peer authentication, authenticating the players in IKE brms
• Internet User's Glossary
• Internet Security Glossary

More general glossary or dictionary information:

• Free Online Dictionary of Computing (FOLDOC)
  • North America
  • Europe
  • Japan

  There are many more mirrors of this dictionary.

• The Jargon File, the definitive resource for hacker slang and folklore
  • North America
  • Holland
  • home page

  There are also many mirrors of this. See the home page for a list.

• A general technology glossary
• An online dictionary resource page with pointers to many dictionaries for many languages
• A search engine that accesses several hundred online dictionaries
• O'Reilly Dictionary of PC Hardware and Data Communications Terms
• Connected Internet encyclopedia
• whatis.com

---

Definitions

0

3DES (Triple DES)

Using three DES encryptions on a single data block, with at least two different keys, to get higher security than is available from a single DES pass. The three-key version of 3DES is the default encryption algorithm for Linux FreeS/WAN.

IPsec always does 3DES with three different keys, as required by RFC 2451. For an explanation of the two-key variant, see two key triple DES. Both use an EDE encrypt-decrypt-encrpyt sequence of operations.

Single DES is insecure.

Double DES is ineffective. Using two 56-bit keys, one might expect an attacker to have to do 2¹¹² work to break it. In fact, only 2⁵⁷ work is required with a meet-in-the-middle attack, though a large amount of memory is also required. Triple DES is vulnerable to a similar attack, but that just reduces the work factor from the 2¹⁶⁸ one might expect to 2¹¹². That provides adequate protection against brute force attacks, and no better attack is known.

3DES can be somewhat slow compared to other ciphers. It requires three DES encryptions per block. DES was designed for hardware implementation and includes some operations which are difficult in software. However, the speed we get is quite acceptable for many uses. See our performance document for details.

A

Active attack

An attack in which the attacker does not merely eavesdrop (see passive attack) but takes action to change, delete, reroute, add, forge or divert data. Perhaps the best-known active attack is man-in-the-middle. In general, authentication is a useful defense against active attacks.

AES

The Advanced Encryption Standard, a new block cipher standard to replace DES being developed by NIST, the US National Institute of Standards and Technology. DES used 64-bit blocks and a 56-bit key. AES ciphers use a 128-bit block and are required to support 128, 192 and 256-bit keys. Some of them support other sizes as well. The larger block size helps resist birthday attacks while the large key size prevents brute force attacks.

Fifteen proposals meeting NIST's basic criteria were submitted in 1998 and subjected to intense discussion and analysis, "round one" evaluation. In August 1999, NIST narrowed the field to five "round two" candidates:

• Mars from IBM
• RC6 from RSA
• Rijndael from two Belgian researchers
• Serpent, a British-Norwegian-Israeli research collaboration
• Twofish from the consulting firm Counterpane

Three of the five finalists -- Rijndael, Serpent and Twofish -- have completely open licenses.

In October 2000, NIST announced the winner -- Rijndael.

For more information, see:

• NIST's AES home page
• the Block Cipher Lounge AES page
• Brian Gladman's code and benchmarks
• Helger Lipmaa's survey of implementations

Adding one or more AES ciphers to Linux FreeS/WAN would be a useful undertaking. Likely one would add all three of the Round Two candidates with good licenses. A complication is that our code is built for a 64-bit block cipher and AES uses a 128-bit block. Volunteers via the mailing lists would be welcome.

AH

The IPsec Authentication Header, added after the IP header. For details, see our IPsec document and/or RFC 2402.

Alice and Bob

A and B, the standard example users in writing on cryptography and coding theory. Carol and Dave join them for protocols which require more players.

Bruce Schneier extends these with many others such as Eve the Eavesdropper and Victor the Verifier. His extensions seem to be in the process of becoming standard as well. See page 23 of Applied Cryptography

Alice and Bob have an amusing biography on the web.

ARPA

see DARPA

ASIO

Australian Security Intelligence Organisation.

Asymmetric cryptography

See public key cryptography.

Authentication

Ensuring that a message originated from the expected sender and has not been altered on route. IPsec uses authentication in two places:

• peer authentication, authenticating the players in IKE brms
• Internet User's Glossary
• Internet Security Glossary

More general glossary or dictionary information:

• Free Online Dictionary of Computing (FOLDOC)
  • North America
  • Europe
  • Japan

  There are many more mirrors of this dictionary.

• The Jargon File, the definitive resource for hacker slang and folklore
  • North America
  • Holland
  • home page

  There are also many mirrors of this. See the home page for a list.

• A general technology glossary
• An online dictionary resource page with pointers to many dictionaries for many languages
• A search engine that accesses several hundred online dictionaries
• O'Reilly Dictionary of PC Hardware and Data Communications Terms
• Connected Internet encyclopedia
• whatis.com

---

Definitions

0

3DES (Triple DES)

Using three DES encryptions on a single data block, with at least two different keys, to get higher security than is available from a single DES pass. The three-key version of 3DES is the default encryption algorithm for Linux FreeS/WAN.

IPsec always does 3DES with three different keys, as required by RFC 2451. For an explanation of the two-key variant, see two key triple DES. Both use an EDE encrypt-decrypt-encrpyt sequence of operations.

Single DES is insecure.

Double DES is ineffective. Using two 56-bit keys, one might expect an attacker to have to do 2¹¹² work to break it. In fact, only 2⁵⁷ work is required with a meet-in-the-middle attack, though a large amount of memory is also required. Triple DES is vulnerable to a similar attack, but that just reduces the work factor from the 2¹⁶⁸ one might expect to 2¹¹². That provides adequate protection against brute force attacks, and no better attack is known.

3DES can be somewhat slow compared to other ciphers. It requires three DES encryptions per block. DES was designed for hardware implementation and includes some operations which are difficult in software. However, the speed we get is quite acceptable for many uses. See our performance document for details.

A

Active attack

An attack in which the attacker does not merely eavesdrop (see passive attack) but takes action to change, delete, reroute, add, forge or divert data. Perhaps the best-known active attack is man-in-the-middle. In general, authentication is a useful defense against active attacks.

AES

The Advanced Encryption Standard, a new block cipher standard to replace DES being developed by NIST, the US National Institute of Standards and Technology. DES used 64-bit blocks and a 56-bit key. AES ciphers use a 128-bit block and are required to support 128, 192 and 256-bit keys. Some of them support other sizes as well. The larger block size helps resist birthday attacks while the large key size prevents brute force attacks.

Fifteen proposals meeting NIST's basic criteria were submitted in 1998 and subjected to intense discussion and analysis, "round one" evaluation. In August 1999, NIST narrowed the field to five "round two" candidates:

• Mars from IBM
• RC6 from RSA
• Rijndael from two Belgian researchers
• Serpent, a British-Norwegian-Israeli research collaboration
• Twofish from the consulting firm Counterpane

Three of the five finalists -- Rijndael, Serpent and Twofish -- have completely open licenses.

In October 2000, NIST announced the winner -- Rijndael.

For more information, see:

• NIST's AES home page
• the Block Cipher Lounge AES page
• Brian Gladman's code and benchmarks
• Helger Lipmaa's survey of implementations

Adding one or more AES ciphers to Linux FreeS/WAN would be a useful undertaking. Likely one would add all three of the Round Two candidates with good licenses. A complication is that our code is built for a 64-bit block cipher and AES uses a 128-bit block. Volunteers via the mailing lists would be welcome.

AH

The IPsec Authentication Header, added after the IP header. For details, see our IPsec document and/or RFC 2402.

Alice and Bob

A and B, the standard example users in writing on cryptography and coding theory. Carol and Dave join them for protocols which require more players.

Bruce Schneier extends these with many others such as Eve the Eavesdropper and Victor the Verifier. His extensions seem to be in the process of becoming standard as well. See page 23 of Applied Cryptography

Alice and Bob have an amusing biography on the web.

ARPA

see DARPA

ASIO

Australian Security Intelligence Organisation.

Asymmetric cryptography

See public key cryptography.

Authentication

Ensuring that a message originated from the expected sender and has not been altered on route. IPsec uses authentication in two places:

• peer authentication, authenticating the players in IKE brms
• Internet User's Glossary
• Internet Security Glossary

More general glossary or dictionary information:

• Free Online Dictionary of Computing (FOLDOC)
  • North America
  • Europe
  • Japan

  There are many more mirrors of this dictionary.

• The Jargon File, the definitive resource for hacker slang and folklore
  • North America
  • Holland
  • home page

  There are also many mirrors of this. See the home page for a list.

• A general technology glossary
• An online dictionary resource page with pointers to many dictionaries for many languages
• A search engine that accesses several hundred online dictionaries
• O'Reilly Dictionary of PC Hardware and Data Communications Terms
• Connected Internet encyclopedia
• whatis.com

---

Definitions

0

3DES (Triple DES)

Using three DES encryptions on a single data block, with at least two different keys, to get higher security than is available from a single DES pass. The three-key version of 3DES is the default encryption algorithm for Linux FreeS/WAN.

IPsec always does 3DES with three different keys, as required by RFC 2451. For an explanation of the two-key variant, see two key triple DES. Both use an EDE encrypt-decrypt-encrpyt sequence of operations.

Single DES is insecure.

Double DES is ineffective. Using two 56-bit keys, one might expect an attacker to have to do 2¹¹² work to break it. In fact, only 2⁵⁷ work is required with a meet-in-the-middle attack, though a large amount of memory is also required. Triple DES is vulnerable to a similar attack, but that just reduces the work factor from the 2¹⁶⁸ one might expect to 2¹¹². That provides adequate protection against brute force attacks, and no better attack is known.

3DES can be somewhat slow compared to other ciphers. It requires three DES encryptions per block. DES was designed for hardware implementation and includes some operations which are difficult in software. However, the speed we get is quite acceptable for many uses. See our performance document for details.

A

Active attack

An attack in which the attacker does not merely eavesdrop (see passive attack) but takes action to change, delete, reroute, add, forge or divert data. Perhaps the best-known active attack is man-in-the-middle. In general, authentication is a useful defense against active attacks.

AES

The Advanced Encryption Standard, a new block cipher standard to replace DES being developed by NIST, the US National Institute of Standards and Technology. DES used 64-bit blocks and a 56-bit key. AES ciphers use a 128-bit block and are required to support 128, 192 and 256-bit keys. Some of them support other sizes as well. The larger block size helps resist birthday attacks while the large key size prevents brute force attacks.

Fifteen proposals meeting NIST's basic criteria were submitted in 1998 and subjected to intense discussion and analysis, "round one" evaluation. In August 1999, NIST narrowed the field to five "round two" candidates:

• Mars from IBM
• RC6 from RSA
• Rijndael from two Belgian researchers
• Serpent, a British-Norwegian-Israeli research collaboration
• Twofish from the consulting firm Counterpane

Three of the five finalists -- Rijndael, Serpent and Twofish -- have completely open licenses.

In October 2000, NIST announced the winner -- Rijndael.

For more information, see:

• NIST's AES home page
• the Block Cipher Lounge AES page
• Brian Gladman's code and benchmarks
• Helger Lipmaa's survey of implementations

Adding one or more AES ciphers to Linux FreeS/WAN would be a useful undertaking. Likely one would add all three of the Round Two candidates with good licenses. A complication is that our code is built for a 64-bit block cipher and AES uses a 128-bit block. Volunteers via the mailing lists would be welcome.

AH

The IPsec Authentication Header, added after the IP header. For details, see our IPsec document and/or RFC 2402.

Alice and Bob

A and B, the standard example users in writing on cryptography and coding theory. Carol and Dave join them for protocols which require more players.

Bruce Schneier extends these with many others such as Eve the Eavesdropper and Victor the Verifier. His extensions seem to be in the process of becoming standard as well. See page 23 of Applied Cryptography

Alice and Bob have an amusing biography on the web.

ARPA

see DARPA

ASIO

Australian Security Intelligence Organisation.

Asymmetric cryptography

See public key cryptography.

Authentication

Ensuring that a message originated from the expected sender and has not been altered on route. IPsec uses authentication in two places:

• peer authentication, authenticating the players in IKE brms
• Internet User's Glossary
• Internet Security Glossary

More general glossary or dictionary information:

• Free Online Dictionary of Computing (FOLDOC)
  • North America
  • Europe
  • Japan

  There are many more mirrors of this dictionary.

• The Jargon File, the definitive resource for hacker slang and folklore
  • North America
  • Holland
  • home page

  There are also many mirrors of this. See the home page for a list.

• A general technology glossary<