It’s common knowledge among those who study cryptography (as well as among most members of the information security community) that the Data Encryption Standard (DES) no longer provides sufficient strength to protect the confidentiality of data. Despite this knowledge, DES is still widely used to protect data. Its use is common among two groups: inexperienced users who feel that anything called the “standard” must be good enough, and in legacy systems where administrators have simply forgotten that a weak algorithm is in place.

Read the full article: DES is not sufficient

Published in SearchWindowsServer on 11/04/03