Re: Should be in crypto for criminals Re: just stupid?
Crypto_at_S.M.S
Date: 07/19/05
- Next message: Crypto_at_S.M.S: "Re: Needle in a haystack--or is this just stupid?"
- Previous message: Joe Peschel: "Re: Should be in crypto for John E. Hadstate Re: just stupid?"
- In reply to: Joe Peschel: "Re: Should be in crypto for criminals Re: just stupid?"
- Next in thread: Joe Peschel: "Re: Should be in crypto for criminals Re: just stupid?"
- Reply: Joe Peschel: "Re: Should be in crypto for criminals Re: just stupid?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Tue, 19 Jul 2005 12:04:33 +1000
Joe Peschel wrote:
> Crypto@S.M.S wrote in news:11doh4u3b1e119d@news.supernews.com:
>
>
>>Joe Peschel wrote:
>>
>>
>>>Crypto@S.M.S wrote in news:11doef71iqve79d@news.supernews.com:
>>>
>>>
>>>
>>>>Joe Peschel wrote:
>>>
>>>
>>>>>It's not a matter of my winning a discussion; it's a matter of your
>>>>>refusing to accept the profundity of Ashwood's cryptanalysis.
>>>>>
>>>>
>>>>If it was so profound, it would have revealed the clear text.
>>>
>>>
>>>No, you have ignored and misunderstood what Joe actually said.
>>>
>>>
>>>
>>>>>>that you would have posted the results if you had any.
>>>>>
>>>>>
>>>>>I'm not working on a ciphertext-only crack.
>>>>>
>>>>>J
>>>>>
>>>>
>>>>In real life, a cipher text only attack is what you need
>>>>to mount to uncover the clear text being sent between your enemies.
>>>
>>>
>>>That's not true. Often you can mount known-plaintext,
>>>chosen-plaintext and chosen-ciphertext attacks. Enigma messages, for
>>>instance, were often cracked using such techniques.
>>>
>>
>>In general, yes; with CryptoSMS in particular, no.
>>
>>Multiple encryption prevents the use of known and chosen plain text
>>attacks, because the plain text is hidden from each layer of
>>encryption. Same goes for chosen cipher text attacks:
>>
>>http://www.ciphersbyritter.com/GLOSSARY.HTM#AlgebraOfSecrecySystems
>
>
> You are layering, however, weak ciphers and hashes, and you have done no
> examination of how a specific layer will affect secrecy. You're only
> guessing that layering must be stronger.
>
>>And do not forget we are only talking about messages transported by
>>SMS.
>>
>>
>>>>Since this discussion was originally framed as "crypto for
>>>>criminals", let's use that as the example. Do you think that law
>>>>enforcement would be given cribs of any kind, when they attempt to
>>>>break a criminal's encryption?
>>>
>>>
>>>Law enforcement, or any attacker for that matter, doesn't need to be
>>>given cribs. Cribs are often "probable word" attacks. An attacker
>>>might expect to find the name of a correspondent, high frequency
>>>words, and expected words encrypted in the messages.
>>>
>>
>>Statistical attacks require large volumes of encrypted messages
>>to work with. No such thing exists when all that was sent were a few
>>short messages.
>>
>>
>>>>In a true, real world attack, you would be faced with cipher text
>>>>only, and have no clues about message content and/or pass phrases.
>>>
>>>
>>>That's just isn't true. See my comment above.
>>>
>>>J
>>>
>>>
>>
>>That just is true. See my comments, just below yours.
>
>
> No, probable word attacks, chosen-plaintext and chosen-ciphertext attacks
> are still possible. Layering one cipher on top of another cipher does not
> necessarily prevent these attacks.
>
> J
>
>
Yes it does:
http://ciphersbyritter.com/NEWS5/RISKRELY.HTM
- Next message: Crypto_at_S.M.S: "Re: Needle in a haystack--or is this just stupid?"
- Previous message: Joe Peschel: "Re: Should be in crypto for John E. Hadstate Re: just stupid?"
- In reply to: Joe Peschel: "Re: Should be in crypto for criminals Re: just stupid?"
- Next in thread: Joe Peschel: "Re: Should be in crypto for criminals Re: just stupid?"
- Reply: Joe Peschel: "Re: Should be in crypto for criminals Re: just stupid?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
