RE: 3DES versus SHA-1
From: Cushing, David (David.Cushing@hitachisoftware.com)Date: 07/09/02
- Previous message: Sedat DOĞRU: "Re: Restricting access to documentation"
- Maybe in reply to: Mario Behring: "3DES versus SHA-1"
- Next in thread: Bennett Todd: "Re: 3DES versus SHA-1"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Tue, 9 Jul 2002 14:19:37 -0400 From: "Cushing, David" <David.Cushing@hitachisoftware.com> To: <SECURITY-BASICS@securityfocus.com>
Mario,
> The purpose is to transfer data between sites securely
> using emails, HTTP, FTP, IP (LAN/WAN), etc.
Then you should use things like:
PGP - encrypted/signed email
HTTPS - web over ssl
SCP - secure copy instead of ftp
IPSEC / VPN - network level encryption
> Which algorithm should I use: 3DES or SHA-1 ?
The two algorithms you mention are very different things.
3DES is a block cypher. It is used to encrypt information. SHA-1 is a hashing algorithm. It is used for validating data integrity. Both have their place in security schemes, but they aren't comparable.
Use standard solutions as suggested above. They have the algorithms built in already.
-David
- Previous message: Sedat DOĞRU: "Re: Restricting access to documentation"
- Maybe in reply to: Mario Behring: "3DES versus SHA-1"
- Next in thread: Bennett Todd: "Re: 3DES versus SHA-1"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
