2 @section GOST 28147-89 (Magma)
16 @url{https://tools.ietf.org/html/rfc5830.html, 5830}
18 2@sup{224} with 2@sup{32} open-enciphered text pairs.
19 Highly depends on used S-boxes
21 @url{https://en.wikipedia.org/wiki/GOST_(block_cipher), article}
26 @item Was developed by KGB in USSR
27 @item Standard does not define any S-boxes:
29 @item There could be backdoors in S-box, if it was defined and fixed
31 @item Secret/private S-box could be used as an additional keying
33 @item You can not determine cipher's strength without knowing the
34 exact S-box. Self-made S-boxes can highly affect overall cipher's
36 @item Implementations using different S-boxes are not interoperable.
38 @item You have to be very cautious using that cipher with that small
39 blocksize and often do rekeying.
40 @item "Magma" name was issued in @ref{en34122015, Kuznechik} standard.
41 It is identical to GOST 28147-89, except for fixed S-boxes and slightly
42 different key and block conversion.
45 @strong{Implementations}: @ref{2814789Impl, here}.