Re: What does Security include?
From: Daniele Raffo (nospam_at_invalid.domain)
Date: 05/31/04
- Next message: Sebastian Gottschalk: "Re: SHA-1 Variants"
- Previous message: Giox: "Re: Problem with Montgomery product"
- In reply to: flip: "What does Security include?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Mon, 31 May 2004 17:42:09 +0200
flip wrote:
>Do people use a different word when referring to security in the context of
>crypto?
>
>What do people mean here when they say security?
>
>
Hi Flip,
I'd say that "Security" in cryptography involves the robustness of the
(algorithms and keys) you choose to encrypt some data, against the
attacks of an adversary whose purpose is to decrypt your data and which
does not know the (algorithm or keys).
Of course this is only a part of the solution to achieve global
security. You may have your files in the lab encrypted with the best
cryptographic algorithm in the world and protected by a key carefully
chosen -- that's cryptographically secure.
But if an attacker can view your files from outside the lab with a
TEMPEST equipment, your system is not globally secure. This purports to
engineering, not cryptography.
Then you could use LCD screens or enclose all machines in a Faraday
cage. But if an attacker can bribe or threaten one of your coworkers to
have him giving the files, your system is not globally secure. This
purports to psychology, not cryptography or engineering.
Is this an answer to your question?
Regards,
-- Daniele Raffo [First name].[Last name][AT]inria.fr
- Next message: Sebastian Gottschalk: "Re: SHA-1 Variants"
- Previous message: Giox: "Re: Problem with Montgomery product"
- In reply to: flip: "What does Security include?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
|
