Re: JavaScrypt Encryption & Decryption - Codegroup bias?

frogstar wrote:

I've noticed that the alphabetical groups produced by JavaScrypt
do not contain the letters "Y" and "Z". Won't this weaken the
key as it introduces a bias into the system, and might be
exploited by an attacker?

Most modern computer based encryption methods have randomly distributed
binary outputs, which can be difficult to transmit or display.
Consequently it is a common practice to wrap the output in some
intermediate format which is easier to display. This format has nothing
to do with security, it is purely for manageability and convenience.
The "JavaScrypt" Javascript encryption libraries offer three such
formats, of which two (hexadecimal and Base-64) are widely
standardised. The third format, "code group" is something they made up
themselves and (as it says in its internal comments) the design is
based largely on aesthetics, i.e. they think it looks good. The absence
of Y and Z in the output is an artefact of this design. It does not
affect security because it is just a reversible representation format,
any attacker would reverse it to get the raw inary output before
starting an attack.

.

Relevant Pages

  • Re: Does Base64 encoding before encryption makes it easier to break?
    ... ]>>> the attacker to do some statistical cryptanalysis. ... ]>> inherently affect the statistical properties in them. ... ]> ciphertext will differ wildly from those of the plaintext. ... ]represented as 4 integers in hex format or in decimal ...
    (sci.crypt)
  • Re: Encryption thru images
    ... > it??And the party in the other end will be able to read it becos the ... > data will be jiggled and an image produced..this format can be changed ... if the attacker knows "in which format data will be jiggled" to ... But at least stego is able to hide under a mountain of possible ...
    (sci.crypt)