Re: How much must be revealed
- From: Volker Hetzer <firstname.lastname@xxxxxxxx>
- Date: Mon, 26 Feb 2007 16:35:27 +0100
HilltopLab@xxxxxxxxxxxxx schrieb:
If I have an encryption program, is it possible to describe theThese are two different issues:
algorithm sufficiently to give people confidence in its security
without revealing the source code? Or must it be given away before any
worth is appreciated?
You can convince peope to trust your /algorithm/ by publishing it. Or by choosing a well known one and saying "I use AES/CTR with that kind of Key/Counter management".
You can convince people that you are not a liar by providing source code.
In cases without random numbers (i.e. if your program is fully deterministic)
people can perhaps trust you if they can reproduce ciphertext by means of pencil and paper and it matches your output and you take reasonable pains
to ensure integrity of thge download (i.e. by providing pgp keys, checksums
and the like).
Lots of Greetings!
Volker
--
For email replies, please substitute the obvious.
.
- Follow-Ups:
- Re: How much must be revealed
- From: HilltopLab
- Re: How much must be revealed
- References:
- How much must be revealed
- From: HilltopLab
- How much must be revealed
- Prev by Date: Re: Quantum Cryptography can not work
- Next by Date: Re: Quantum Cryptography can not work
- Previous by thread: Re: How much must be revealed
- Next by thread: Re: How much must be revealed
- Index(es):
Relevant Pages
|
