Jump to content

Triple DES

From Wikipedia, the free encyclopedia
This is an old revision of this page, as edited by Damian Yerrick (talk | contribs) at 09:01, 20 April 2002 (Why the middle step is a decryption). The present address (URL) is a permanent link to this revision, which may differ significantly from the current revision.

Triple DES (also 3DES) is the encrypt-decrypt-encrypt EDE mode of the Data Encryption Standard (DES) cipher algorithm.

The encryption is done by

C = encryptk3(decryptk2(encryptk1(P))).

with

P ... plaintext
C ... ciphertext
ki ... key #i
encrypt, decrypt ... DES

Because DES is not a group, using it in EDE mode will increase its key size by a factor 3 (or 2 in the case of k1 = k3); in the case of DES this totals to 168 (or 112) bits. If k1 = k2 or k2 = k3, triple DES is equal to DES.

The use of three steps is essential to prevent meet in the middle attacks. The choice of decryption for the middle step (as opposed to encryption) does not affect the security of the algorithm but instead lets tools that implement triple DES interoperate with legacy single DES tools.

See also:

Retrieved from "https://en.wikipedia.org/w/index.php?title=Triple_DES&oldid=509855"