Data Encryption Standard (DES)

The Data Encryption Standard (DES) is a symmetric key cryptography algorithm.

- Key size is 56bits + parity check is 8bits
- Block size is 64bits

DES modes
- Stream ciphers (implemented in hardware)

     * Cipher Feedback (CFB)
        Errors in this mode of DES will propagate

     * Output Feedback (OFB)
        Susceptible to block replay attacks

- Block ciphers (implemented in software)

     *  Electronic Code Block (ECB)
         A given plaintext will always generate the same ciphertext

     * Cipher Block Chaining (CBC)
        A given plaintext will always result in different ciphertext

Double-DES and Tripe-DES

- Doubling the key from 56bits to 112bits, the strength will increase from 2^56 to 2^112
- 2DES is susceptible under Man-in-the-middle attack which its strength is as same as DES
  2DES -> -> -> DES
- 3DES can use 2 or 3 separate keys.

     * DES EEE2 (2 keys)
      Encryption with key1 >>> Encryption with key2 >>> Encryption with key3

     * DES EDE2 (2 keys)
      Encryption with key1 >>> Decryption with key2 >>> Encryption with key3

     * DES EEE3 (3 keys)
      Encryption with key1 >>> Encryption with key2 >>> Encryption with key3

     * DES EDE3 (3 keys)
      Encryption with key1 >>> Decryption with key2 >>> Encryption with key3

Reference: Official (ISC)2 Guide to the CISSP CBK, Second Edition ((ISC)2 Press)