#246 AxCypt256

AxCrypt (102)

A year and a half ago we had a brief discussion about a possible future version with 256-bit AES encryption. You wrote "there is no reason why there cannot be a 256-bit version except time. There will be one, but very little time is available currently to work with AxCrypt, and a 64-bit version is the highest priority right now and in progress." (128-bit AES is cleared for protecting classified information up to the SECRET level, but TOP SECRET information requires either the 192-bit or 256-bit key lengths.) Any updates on when, if ever, this will be available would be much appreciated. Thanks!


  • Kob

    Due to a key scheduling attack on AES-256 (in 2009), this is what Bruce Schneier said, in a response to a question:

    "So if I read this right (haven't seen the paper yet), AES-128 is actually harder to break than AES-256 due to the nature of this attack?"

    Yes and no. Neither can be broken. There are no attacks against any AES variants that are better than brute force; all of these attacks are against reduced-round variants.

    That being said, the key schedule for AES-256 is very poor. I would recommend that people use AES-128 and not AES-256."

    Source: http://www.schneier.com/blog/archives/2009/07/another_new_aes.html

  • Thank you, it's all very confusing ;-) As Mr. Schneier says, neither can be broken. But 256 sounds strong than 128, and I get so many requests for 256 that it's in the end easier to implement than to explain.

  •  Chefkeks


    Even though AES-128 is strong, additionally AES-256 and AES-512 would be great (:

    Thanks in advance!