2 @section GOST 28147-89 (Magma)
17 @item @url{https://tools.ietf.org/html/rfc5830.html, 5830}
18 @item @url{https://tools.ietf.org/html/rfc8891.html, 8891} (Magma)
21 2@sup{224} with 2@sup{32} open-enciphered text pairs.
22 Highly depends on used S-boxes
24 @url{https://en.wikipedia.org/wiki/GOST_(block_cipher), article}
29 @item Was developed by KGB in USSR
30 @item Standard does not define any S-boxes:
32 @item There could be backdoors in S-box, if it was defined and fixed
34 @item Secret/private S-box could be used as an additional keying
36 @item You can not determine cipher's strength without knowing the
37 exact S-box. Self-made S-boxes can highly affect overall cipher's
39 @item Implementations using different S-boxes are not interoperable.
41 @item You have to be very cautious using that cipher with that small
42 blocksize and often do rekeying.
43 @item "Magma" name was issued in @ref{en34122015, Kuznechik} standard.
44 It is identical to GOST 28147-89, except for fixed S-boxes and slightly
45 different key and block conversion.
48 @strong{Implementations}: @ref{2814789Impl, here}.