Re: Fingerprint as cryptokey

"Kim G. S. Øyhus" <kim@xxxxxxxxxxx> wrote in message
news:ebib69$liv$1@xxxxxxxxxxxxxxxxxxxxx
And what about all those cryptosystems in ordinary use?
DVD: Cracked.
MD5: Cracked.
DES: Cracked.
Ipod: Cracked. etc.

Actually CSS and Fairplay (if you're going to actually attempt to keep up
here you should probably learn the difference between a piece of white
plastic and a system) are not cracked, they are broken, but they are not
cracked. In addition their breakage was widely accepted as inevitable, just
as AACS will fall, because their security requires things which are false.

As for MD5, it is cracked, the point being that (just like what I would
recommend for your system) we recommend it not be used.

DES was designed to be cracked, so saying it is cracked is like saying a
light bulb lights up.

The trend should be easy to see if you are not blinded by the allure
of crypto.

Yep, the trend is when people who don't know what they are doing (CSS and
Fairplay) do things the result is weak.

So......... you don't know anything about cryptography, and you're trying to
do cryptography.....hmmm. You're someone who doesn't know what you're doing,
and you at least claim to be doing something . . . . hmmmmmmm.

Bruce Schneider has reached the similar conclusions. His newer book is
more about how systems are made secure through design than strong
crypto.

Yeah, you'll find that quoting Schneier (at least spell it correctly, then
we won't laugh as hard at you) won't get you very far if you can't
understand what he's saying, worse if you misquote. So far you have not
shown even the most basic understanding of real security, or of
cryptography, or the ability to learn either, or of math, or even of
spelling. Perhaps cryptography isn't the right choice for you.
Joe


.

Relevant Pages

  • Re: Fingerprint as cryptokey
    ... DES: Cracked. ... Actually CSS and Fairplay (if you're going to actually attempt to keep up ... of crypto. ... Fairplay) do things the result is weak. ...
    (sci.crypt)
  • Re: Wikipedia "Cryptography" reaches Featured Article status
    ... publication, as described in both the quote itself and in the NIST ... NSA has characterized DES as one of their biggest mistakes. ... So DES was a mistake because it was followed by research? ... of DES lead to an explosion of published public sector crypto research. ...
    (sci.crypt)
  • Re: "Alien" cryptanalysis
    ... >> SKIPJACK was designed by people that really know crypto. ... Just like DES before it. ... >> the NSA can easily break anyone foolish enough to use it. ... >> it may be secure from non government people for a few years. ...
    (sci.crypt)
  • Re: FPGA dev kit with 4-8 Cyclones or Spartans
    ... Just a couple more thoughts on this (I'm not a crypto person but hey, ... DES "roughly" is only 56 bits as I recall, ... other than brute-force parallel tasks, and in the crypto world I ... they rely not only on being able to do fast decrypt operations to ...
    (comp.arch.fpga)
  • Re: Wikipedia "Cryptography" reaches Featured Article status
    ... the explosion of academic research into crypto that followed the DES ... publication, as described in both the quote itself and in the NIST ... of DES lead to an explosion of published public sector crypto research. ...
    (sci.crypt)
Loading