Re: Seeking Encryption Software Referals

From: Brian Maratikos (test_at_)
Date: 02/27/05 

Date: Sun, 27 Feb 2005 01:34:58 -0600

roberson@ibd.nrc-cnrc.gc.ca (Walter Roberson) wrotf:

>You imply that XP and W2K can have their security trivially bypassed by
>a user level program, even in fully patched versions (ince ME didn't
>have such protections.) Do you know that to be the case, or are you
>just going on the general theory that there will always be another security
>hole in XP/W2K ?

No, I know that both XP and 2K can have thier security bypassed by the
average 16 year old. I have several tools that will do just that in
fact. One of them I use to unlock clients computers who have lost
thier password. I have done fairly extensive study into the MS model
of security and I find both the ACL of NTFS and the dual key
encryption method of EFS to be fatally flawed. Thus I prefer an OS
that doesn't even pretend to provide security. MS hasn't even patched
all the holes that have been revealed so far, and yes there will be
many more to come.

>:I assure you I am quite familiar with the security of various
>:Microsoft products. NTFS uses DES for encryption and I am not
>:impressed with DES (cracked in under 18 hours) or MS inplementation of
>:it in EFS.
>
>You believe you are at significant risk of attack from someone with
>similar resources that were used to crack DES in 18 hours (i.e.,
>literally thousands of computers), and yet you are still willing to
>use Windows ??
>
>You will have to excuse us if we get the impression that you haven't
>done a proper threat/risk assessment.

Firstly, while the guy who broke the speed record in cracking DES
built a supercomputer, lets remember he did so for less than 10k
bucks, and there were plenty of others who did so in more time with
ordinary PCs.

Second, I fully believe that with the proper security measures in
place that an MS box will be secure enough for my needs. The ultimate
security would be to keep my box in a locked vault all the time, but I
won't get much done that way. Functionality does play into the
equation.

Brian

Relevant Pages

  • Re: EFS is a joke!
    ... > You seem to be missing a couple of basics of security yourself. ... And if he could do that, why use EFS at all? ... they can't decrypt the file and see your information. ... multiple layers of encryption for security. ...
    (comp.security.misc)
  • Re: Seeking Encryption Software Referals
    ... I know that both XP and 2K can have thier security bypassed by the ... encryption method of EFS to be fatally flawed. ... >done a proper threat/risk assessment. ... while the guy who broke the speed record in cracking DES ...
    (sci.crypt)
  • Re: File Encryption
    ... the mechanism used to protect the EFS ... private key. ... > account appears to be the only account whose security ... > my certificate and security information is intact (the ...
    (microsoft.public.windowsxp.security_admin)
  • RE: File Encryption - Laptop
    ... Windows XP with SP1 and then using Encrypting File System (EFS). ... This provides paramount security - even if the laptop is stolen, ... Captus Networks ...
    (Security-Basics)
  • Re: hd security
    ... Microsoft security products, and to provide a resource for ... additional capabilities over "EFS Key", ... >> Encryption password must be known or SAM database must ... Subverting the ...
    (microsoft.public.windowsxp.security_admin)