Re: Importance of salt
From: Dominick Baier [DevelopMentor] (dbaier_at_pleasepleasenospamdevelop.com)
Date: 09/16/05
- Previous message: William Stacey [MVP]: "Re: Importance of salt"
- In reply to: vla10d_at_gmail.com: "Re: Importance of salt"
- Next in thread: vla10d_at_gmail.com: "Re: Importance of salt"
- Reply: vla10d_at_gmail.com: "Re: Importance of salt"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Fri, 16 Sep 2005 09:20:21 -0700
Hello vla10d@gmail.com,
there are cryptanalysis methods, which take a different approach than brute
forcing.
By looking at data (and the bigger data the better) you can get the key,
this is especially true if you reuse the key (=password) for different encrypted
data and if the key (=password) is weak.
get the schneier book :)
---------------------------------------
Dominick Baier - DevelopMentor
http://www.leastprivilege.com
> Can you explain a little bit this golder rule of never using a
> password derived key on bulkloads of data?
>
> Thanks again.
>
> V.
>
- Previous message: William Stacey [MVP]: "Re: Importance of salt"
- In reply to: vla10d_at_gmail.com: "Re: Importance of salt"
- Next in thread: vla10d_at_gmail.com: "Re: Importance of salt"
- Reply: vla10d_at_gmail.com: "Re: Importance of salt"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
