Re: un-hashing to reveal pass phrase [was: crypto sms]

From: \ (jonez_at_norcom.ca)
Date: 06/23/05 

Date: Thu, 23 Jun 2005 11:36:58 -0600

John Hadstate wrote:
> Crypto@S.M.S wrote:
> > Joseph Ashwood wrote:
> > > The times given in those are old, in fact I don't think the
> > > latest papers have been officially published, but the show
> > > collisions in MD5 in 15 minutes. Because there is only one
> > > colliding value, the result is the original passphrase.
> > >
> >
> > Once again you have not got your facts straight:
> >
> > Vlastimil Klima1, 2
> > v.klima@volny.cz
> > http://cryptography.hyperlink.cz/
> > Prague, Czech Republic
> > March 31, 2005
> >
> > Less than 3 months old, wherein it states,
> > (and I repeat my original quotation):
> >
> > In the last experiment, provided by Ondrej Pokorný
> > on his home PC (Intel Pentium, 1GHz), he obtained 14
> > collisions in 58 hours and 32 minutes. It gives even
> > more optimistic time for finding a collision (1 collision
> > per 4 hours 11 minutes) than on the author's notebook.
> >
> > Throughout this entire exchange you have continually
> > exaggerated numbers to fit your statements.
>
> Sitting on a table 8 feet from me is an Intel-based PC with two 3.6
> GHz. processors. With little effort, I could have 8 such delivered
> and
> set up in less than a day. Compared to one 1 GHz. notebook, we're
> looking at an increase in computing horsepower of about 56 times. For
> about $160K, Mr. Pokorny could have his 14 collisions in about an
> hour,
> and I have not even scratched the surface when it comes to
> marshalling
> the computing power and money available to the NSA.
>
> I think you're seriously in denial of reality. I have mixed feelings
> about your very public disclosure of this. Anyone seriously concerned
> about their security who has access to this thread will throw out
> CryptoSMS and any follow-on project from you like yesterday's garbage.
> This in turn will make it harder for some governments to keep tabs on
> some of your scumbag customers.

Which would be a good thing if, and only if, what you claim
were true, eh?

No one want's bad crypto, and there aren't many prisons in the world
that need more inmates, so if only one of you genii would crack
this supposedly bad crypto program and thereby show the entire
world what crap it is, everyone on both sides of the fence would
be better off.

It's been over 195 hours ... come on John, be a hero and show
the world what useless crap this program really is --

      Newsgroups: misc.legal, sci.crypt, talk.politics.crypto, us.legal
      From: poster <pos...@use.net>
      Date: Tue, 14 Jun 2005 15:02:49 +1000
      Local: Tues,Jun 14 2005 1:02 am
      Subject: Re: crypto for Joseph Ashwood?

      Since I'm a CryptoSMS user, I am very curious just how clever
      Mr Ashwood is. Attached below are three CryptoSMS messages, all
      of which are encrypted with the same passphrase and all of which
      contain the same clear text. Mr Ashwood, would you please crack
      these and post the contents for all to see? It should be easy
      since you have 3 individual messages which are all internally
      identical. Good luck.

      ??31m3dH-zpJ2ta8zI07sFm5o-UX5w­rMwKtUOGffGoqz98P7RrUE0bNu4Yu0­Sue-ZdUaNXK000??

      ??31SdibaVtKZ=50U74hLnQYg558NM­=dopXVivzD5LOu1XQFqYIC1IK-6O1G­7LQaRBbL41G000??

      ??31jKvmpN7DsULlMlD9ojQbe17m3R­8eA8FL51HM1vln=zB3GkwtRBjcp3wS­-2wRmcatMXK000??

> It's the Law of Unintended Consequences at work, sort of like the
> effect of banning "Saturday Night Specials": petty criminals switched
> to handguns like .38's and .357's that are far more lethal. Incidents
> that were formerly "assault and battery with intent to kill" became
> outright murders.