# Difference Between AES and 3DES

**AES vs 3DES**

AES (Advanced Encryption Standard) and 3DES, or also known as Triple DES (Data Encryption Standard) are two of the current standards in data encryption. While AES is a totally new encryption that uses the substitution-permutation network, 3DES is just an adaptation to the older DES encryption that relied on the balanced Feistel network. Basically, 3DES is just DES applied three times to the information that is being encrypted.

AES uses three common encryption key lengths, 128, 192, and 256 bits. When it comes to 3DES the encryption key is still limited to 56 bits as dictated by the DES standard. But since it is applied three times, the implementer can choose to have 3 discrete 56 bit keys, or 2 identical and 1 discrete, or even three identical keys. This means that 3DES can have encryption key lengths of 168, 112, or 56 bit encryption key lengths respectively. But due to certain vulnerabilities when reapplying the same encryption thrice, using 168 bits has a reduced security equivalent to 112 bits and using 112 bits has a reduced security equivalent to 80 bits.

3DES also uses the same block length of 64 bits, half the size that of AES at 128 bits. Using AES provides additional insurance that it is harder to sniff leaked data from identical blocks. When using 3DES, the user needs to switch encryption keys every 32GB of data transfer to minimize the possibility of leaks; identical to when using the standard DES encryption.

Lastly, repeating the same process three times does take some time. With all things held constant, AES is much faster compared to 3DES. This line gets blurred when you include software, hardware, and the complexity of hardware design to the mix. So if you have 3DES accelerated hardware, migrating to AES implemented by software alone may result in slower processing times. In this aspect, there is not better solution than to test each one and measure their speed. But when it comes to security, AES is the sure winner as it is still considered unbreakable in practical use.

Summary:

3DES uses identical encryption to DES while AES uses a totally different one

3DES has shorter and weaker encryption keys compared to AES

3DES uses repeating encryption keys while AES does not

3DES also uses a shorter block length compared to AES

3DES encryption takes longer than AES encryption

- Difference Between Sony Cybershot S Series and W Series - December 22, 2012
- Difference Between Samsung Galaxy S3 and iPhone 5 - December 21, 2012
- Difference Between Samsung Galaxy S2 (Galaxy S II) and Galaxy S 4G - December 20, 2012

### Search DifferenceBetween.net :

Email This Post : If you like this article or our site. Please spread the word. Share it with your friends/family.

Great explanation! Really useful for understanding the difference between AES and 3DES which is the whole purpose of this article.

Just some extra information regarding to how 3DES works:

1. 3 Keys in use, K1/K2/K3

2. K1 encryption, K2 decryption, K3 encryption.

3. Three options: K1=K2=K3==56bits key; K1=K3=/=K2 == 112bits; K1=/=K2=/=K3 == 168bits

Cheers

I’m usually so well versed in PC terminology – but recently I hit a brain spasm when I was doing my first cert export & had to choose the encryption type.. I swear that famous jeopardy music started playing thank you for this midnight life saver it was a light read, very detailed & gave me my “Ohhh! Okay! I get it now!” moment. Sure hope you have more information I may need in the future

Speed is not an issue when protecting data, therefore the speed of encryption/deciphering should not be an argument comparing the two.

DES like AES works like PLA which makes them fast enough.

The mediatization and generalization of AES makes it a preferred choice – also having long key mediatized a safer encryption which is not the case.

Everything that is encrypted is doomed to be soon or later deciphered.

The main question is how long should the algorithm protect the data – for example protecting a financial deal information make sense for the horizon of the deal but should it mater when the horizon is 20Y? Obviously not because to impact 20Y the deal should be several Tri USD at least.

To take into account is also the following, the more popular an encryption method is, the more the ‘pirates’ are willing to invest to ‘hack’ it because it will return a lot of money. Therefore choosing a less safe encryption algorithm could prove a safer solution – absurd isn’t it?