From: pgut01@cs.auckland.ac.nz (Peter Gutmann)
Newsgroups: sci.crypt
Subject: Re: NSEA
Date: 2 Sep 1995 03:59:17 GMT
Organization: University of Auckland
Lines: 13
Sender: pgut01@cs.auckland.ac.nz (Peter Gutmann)
Message-ID: <428kql$n1p@net.auckland.ac.nz>
References: <427pnv$d7u@cnn.Princeton.EDU>
NNTP-Posting-Host: cs26.cs.auckland.ac.nz
X-Newsreader: NN version 6.5.0 #3 (NOV)

dawagner@phoenix.princeton.edu (David A. Wagner) writes:

>I just happened upon NSEA randomly, and thought I should warn people
>that it looks very insecure.  (Maybe this is already well-known.)

It's known that it's not overly secure, although possibly not well-known 
(I've been discouraging people from using it whenever I'm asked about it).  I 
found at least three possible attacks in about 1993, but unfortunately have 
lost the notes I had on them.  My conclusion was that to make it secure it 
needed (among other things) so many rounds that it's main advantage - speed - 
would be entirely negated, making it pretty well useless.
 
Peter.