Triple DES

Triple Data Encryption Algorithm
	3DES overall view
General
First published	1981
Derived from	DES
Cipher detail
Key sizes	112 or 168 bits
Block sizes	64 bits
Structure	Feistel network
Rounds	48 DES-equivalent rounds
Best public cryptanalysis
	Lucks: 232 known plaintexts, 2113 operations including 290 DES encryptions, 288 memory; Biham: find one of 228 target keys with a handful of chosen plaintexts per key and 284 encryptions

In cryptography, Triple DES (3DES or TDES), officially the Triple Data Encryption Algorithm (TDEA or Triple DEA), is a symmetric-key block cipher, which applies the DES cipher algorithm three times to each data block. The 56-bit key of the Data Encryption Standard (DES) is no longer considered adequate in the face of modern cryptanalytic techniques and supercomputing power; Triple DES increases the effective security to 112 bits. A CVE released in 2016, CVE-2016-2183, disclosed a major security vulnerability in the DES and 3DES encryption algorithms. This CVE, combined with the inadequate key size of 3DES, led to NIST deprecating 3DES in 2019 and disallowing all uses (except processing already encrypted data) by the end of 2023.^[1] It has been replaced with the more secure, more robust AES.

While US government and industry standards abbreviate the algorithm's name as TDES (Triple DES) and TDEA (Triple Data Encryption Algorithm),^[2] RFC 1851 referred to it as 3DES from the time it first promulgated the idea, and this namesake has since come into wide use by most vendors, users, and cryptographers.^[3]^[4]^[5]^[6]

^ Barker, Elaine; Roginsky, Allen (2019-03-01). "Transitioning the use of cryptographic algorithms and key lengths" (PDF). Gaithersburg, MD: NIST Publications. p. 7. doi:10.6028/nist.sp.800-131ar2. NIST SP 800-131A Revision 2. Archived (PDF) from the original on 2019-05-11. Retrieved 2022-09-20.
^ "Triple DES Encryption". IBM. Retrieved 2010-05-17.
^ Alanazi, Hamdan. O.; Zaidan, B. B.; Zaidan, A. A.; Jalab, Hamid A.; Shabbir, M.; Al-Nabhani, Y. (March 2010). "New Comparative Study Between DES, 3DES and AES within Nine Factors". Journal of Computing. 2 (3). arXiv:1003.4085. Bibcode:2010arXiv1003.4085A. ISSN 2151-9617.
^ "Cisco PIX 515E Security Appliance Getting Started Guide: Obtaining a DES License or a 3DES-AES License" (PDF). Cisco. 2006. Archived (PDF) from the original on 2016-02-07. Retrieved 2017-09-05.
^ "3DES Update: Most Banks Are Done, But..." ATM & Debit News. 2007-03-29. Archived from the original on 2013-05-10. Retrieved 2017-09-05.
^ RFC 2828 and RFC 4949

[1] Barker, Elaine; Roginsky, Allen (2019-03-01). "Transitioning the use of cryptographic algorithms and key lengths" (PDF). Gaithersburg, MD: NIST Publications. p. 7. doi:10.6028/nist.sp.800-131ar2. NIST SP 800-131A Revision 2. Archived (PDF) from the original on 2019-05-11. Retrieved 2022-09-20.

[2] "Triple DES Encryption". IBM. Retrieved 2010-05-17.

[3] Alanazi, Hamdan. O.; Zaidan, B. B.; Zaidan, A. A.; Jalab, Hamid A.; Shabbir, M.; Al-Nabhani, Y. (March 2010). "New Comparative Study Between DES, 3DES and AES within Nine Factors". Journal of Computing. 2 (3). arXiv:1003.4085. Bibcode:2010arXiv1003.4085A. ISSN 2151-9617.

[4] "Cisco PIX 515E Security Appliance Getting Started Guide: Obtaining a DES License or a 3DES-AES License" (PDF). Cisco. 2006. Archived (PDF) from the original on 2016-02-07. Retrieved 2017-09-05.

[5] "3DES Update: Most Banks Are Done, But..." ATM & Debit News. 2007-03-29. Archived from the original on 2013-05-10. Retrieved 2017-09-05.

[6] RFC 2828 and RFC 4949

[1]

[2]

[3]

[4]

[5]

[6]