Each block contains 64 bits of data. In cryptography, Triple DES (3DES) is the common name for the Triple Data Encryption Algorithm (TDEA) block cipher, which applies the Data Encryption Standard (DES) cipher algorithm three times to each data block. Rather than encrypting three times, you encrypt, decrypt, and encrypt again with different keys. So there are 2^56 possibilities of keys which would take a decade to find the correct key using brute-force attack 2. The algorithm is believed to be practically secure in the form of Triple DES… Second variant of Triple DES (2TDES) is identical to 3TDES except that K 3 is replaced by K 1. AES uses keys of 128, 192 or 256 bits, although, 128 bit keys provide sufficient strength today. Due to this design of Triple DES as an encrypt–decrypt–encrypt process, it is possible to use a 3TDES (hardware) implementation for single DES by setting K 1, K 2, and K 3 to be the same value. Triple DES has been endorsed by NIST as a temporary standard to be used until the AES was finished. Template:Infobox block cipher. It uses 128 bit blocks, and is efficient in both software and hardware implementations. From: stagda sys1 ic ncs com (Dave Stagner) Date: Thu, 13 Apr 1995 13:01:34 -0500 (CDT) As I understand it, triple-DES is not simply "three times stronger" than regular DES, but actually an order of magnitude stronger. Strength of Triple-DES. The AES block cipher is rather more secure than triple DES. Many security systems use both Triple DES and AES. Triple-DES is the extended version of DES which applies DES three times with two 56-bit keys. Triple DES will be kept around for compatibility reasons for many years after that. AES is the successor of DES as standard symmetric encryption algorithm for US federal organizations. Triple DES extends the key length of DES by applying three DES operations on each block: an encryption with key 0, a decryption with key 1 and an encryption with key 2. AES is the default algorithm on most systems. Each block is encrypted in isolation, which is a security vulnerability. The key size is increased in Triple DES to ensure additional security through encryption capabilities. The AES is at least as strong as Triple DES and much faster. In January 1999 distributed net and the Electronic Frontier Foundation (EFF) collaborated to publicly break a DES key in 22 hours and 15 minutes. and changed all DES / Triple DES and RC4 ciphers to enabled=0x00000000(0) I've even added the Triple DES 168 key and 'disabled' it However my Nmap scan : $ -sV -p 8194 --script +ssl-enum-ciphers xx.xx.xx.xx Triple DES: Triple DES is a encryption technique which uses three instance of DES on same plain text. It is vulnerable to key attack when a weak key is used. This is because there is one bit (the least significant one) in each byte assigned to create odd parity. However double DES uses 112 bit key but gives security level of 2^56 not 2^112 and this is because of meet-in-the middle attack which can be used to break through double DES. If a 128 bit triple DES key is created the amount of effective key bits - the bits actually used in the protocol - is 112 bits. It operates on 64-bit blocks of plaintext and uses a 128-bit key. This provides backwards compatibility with DES. Advantages: 1. its a 56 bit key. Data Encryption Standard (DES) is the predecessor, encrypting data in 64-bit blocks using a 56 bit key. Triple Data Encryption Standard (DES) is a type of computerized cryptography where block cipher algorithms are applied three times to each data block. Encryption and decryption takes the same algorithm. Go for AES. International data encryption algorithm (IDEA) is a block cipher method similar to DES.