Re: Worst encryption software ever

What is the name of this software? We must be protected to be protected by
this software

"Christian Zietz" <newsgroup@xxxxxxxxxxxxxx> wrote in message
news:4ltqjsF3gr17U1@xxxxxxxxxxxxxxxxx
Hi,

sorry, I just have to post this after what I've just seen.
I'm a subscriber of a PC magazine. Its current issue included the full
version of a file encryption software as a special goodie. Normally one
would have to pay 14.99 Euro for that software. Well, the description
said that the software featured several encryption algorithms so I had a
look at it.

It turns out that one of the algorithms is the classic Caesar algorithm,
where the same value is added to every byte of the file. Then there are
two algorithms that are said to be more advanced. Well, one of them XORs
the bytes of a password (which by the way can only consist of letters
and number, no spaces or special characters) with the file, starting
over at the beginning of the password when all of its characters were
used.

Finally there is an algorithm which the author has specially developed
for the software, at least he says so. He also says that for security
reasons no details are given about this algorithm. Oh, security by
obscurity. After some minutes of analyzing the output, it turned out
that this the same XOR algorithm only that every byte is additionally
XORed with 0xff.

Obviously the author has not heared of statistical analysis or a
known-plaintext-attack, when he advertises the software as ideal
solution to "secure your privacy". I mean, when I was little I also
devised such schemes for fun but I didn't go and sold them.

What angers me, is that he got several awards for his software, he makes
money with it, he lets other people believe their data is secure instead
of advising them to use state-of-the-art crypto and that even a computer
magazine now recommends this software which ridicules the term
cryptography.

Christian


.

Relevant Pages

  • Re: Strongest encryption algorithm
    ... OTP is theoretically secure (probability of breaking an OTP collapse ... strongest and whidely usable algorithms for secret key ... it's easier to study and prove or disprove security characteristics. ... The algorithm should be fast otherwise either the user will not use ...
    (sci.crypt)
  • Re: AutoCompete stored passwords encrypted but with what?
    ... security through obscurity. ... secure just because people are not aware of the mechanism that is used ... would you rather know the algorithm they use and feel confident using ... sometimes the system bases cryptographic key on the complexity of the ...
    (microsoft.public.windows.inetexplorer.ie6.browser)
  • Re: Question about bit strength
    ... I did say a properly implemented secure algorithm, ... difficulty of reversing the transformation without "the ... just doesn't tell you anything meaningful about security of a competently ...
    (sci.crypt)
  • Re: Cipher advice
    ... I am involved in a software project that requires a degree of secure ... We have tried an AES implementation but ... My limited understanding of RC4 is ... I am looking for an algorithm that is not much slower than ...
    (sci.crypt)
  • Re: Bonehead basic crypto question
    ... Even if 256-bit is broken by brute force using quantum computers ... as is secure should be used. ... People might like to say "even if an algorithm is ... be conservative) and focus on eliminating shortcut attacks. ...
    (sci.crypt)