Properties of a Good Modern Cipher

• Large key to resist brute-force search

• Published, reviewed algorithm

  • security depends entirely on secrecy of key
  • security cannot depend on algorithm secrecy

• Resistance to chosen-plaintext attack

  • attacker cannot determine key even if given ability to encrypt plaintext of the attacker’s choosing
  • implies resistance to known-plaintext and known-ciphertext attacks

Previous slide

Next slide

Back to first slide

View graphic version