Is the 3DES encryption algorithm the best choice for S/MIME protocol?

The triple DES encryption algorithm was originally designed for the S/MIME protocol, but is it still the best choice for encryption? In this expert response, Randall Gamby describes the advantages and disadvantages to using 3DES.

Randall Gamby, HP

How can 3DES symmetric encryption be implemented in the S/MIME protocol?

Actually, the 3DES encryption algorithm was part of the original S/MIME protocol. However, 3DES -- also known as Triple DES, or the Triple Data Encryption Standard -- is based on the DES algorithm developed by an IBM team in 1974. Triple DES was originally designed to run in specialized hardware, so it's considered computationally expensive on general-purpose processors.

Because of the limitations of the key lengths used in 3DES and its poor execution on general-purpose computers, S/MIME eventually adopted AES as the standard for its encryption. AES, also known as Rijndael and FIPS-197, is a symmetric block cipher that can accept variable block and key lengths up to 256-bits and isn't restricted to the less secure 64-bit key lengths of 3DES. Plus, it would probably run a bit better on your server than 3DES. Because of this, it's hard to recommend using 3DES (even though it should be technically possible) because ultimately you'll be taking a giant step backward. But assuming you have a requirement due to a legacy system, I'd recommend doing some research on the Internet to find an old copy of the S/MIME protocol standard for guidance on how to integrate a 3DES encryption key into it.

This was last published in April 2010

Is the 3DES encryption algorithm the best choice for S/MIME protocol?

The triple DES encryption algorithm was originally designed for the S/MIME protocol, but is it still the best choice for encryption? In this expert response, Randall Gamby describes the advantages and disadvantages to using 3DES.

Dig Deeper on Disk and file encryption tools

L’Anssi se fait conseiller en sécurité d’Active Directory

The difference between AES and DES encryption

UiPath : 568 M$ pour accélérer la R&D et éduquer le marché au RPA

Triple DES: How strong is the data encryption standard?

Related Q&A from Randall Gamby

For minimum password length, are 14-character passwords sufficient?

How has enterprise SSO technology evolved?

The FIDO authentication framework: What do enterprises need to know?

Start the conversation

0 comments

Please create a username to comment.

-ADS BY GOOGLE

SearchCloudSecurity

SASE identity policies enhance security and access control

Comparing SASE vs. traditional network security architectures

Defining and evaluating SOC as a service

SearchNetworking

How to manage the surge in remote video internet traffic

Supporting remote workers in your pandemic response plan

Take a look at 6 top VPN service providers for remote work

SearchCIO

Why data in digital transformation is crucial to your business

How data science can help your company withstand the pandemic

A checklist for digital transformation success

SearchEnterpriseDesktop

Compare UEM capabilities of Citrix Workspace vs. VMware Workspace One

VMware Workspace One feature speeds remote onboarding

Discover how Catchpoint helps end-user experience monitoring

SearchCloudComputing

Evaluate on-premises vs. cloud computing pros and cons

5 tips that can lead to Azure cloud management success

AWS security options grow with Amazon Detective

ComputerWeekly.com

Coronavirus threats ramp up as more hospitals come under attack

Samsung, AWS claim world’s first mission-critical comms video call

The growing stature of open source in APAC