Subject: Re: IPsec performance
To: Simon Burge <simonb@NetBSD.ORG>
From: Bill Sommerfeld <email@example.com>
Date: 07/20/2000 08:44:36
> Idle question - since blowfish isn't an AES candidate, will its life be
> long enough (in IPsec) to justify the work? I also don't know off the
> top of my head if any of the AES candidate ciphers have large key setup
> times (MARS?)...
Twofish appears to have somewhat faster key setup than Blowfish, but,
judging from http://www.counterpane.com/twofish_key_setup.html, it
could still profit from keeping an expanded key around; for the
performance level not involving dynamic code generation, key setup
looks roughly equivalent to encrypting about 400 bytes.