U++ forum: Welcome to the forum

Status & Roadmap

Authors & License

Funding Ultimate++

Search on this site

Search in forums

Home » Developing U++ » UppHub » Encrypted storage with streaming (OpenSSL, AES)

Show: Today's Messages :: Show Polls :: Message Navigator
E-mail to friend

Return to the default flat view

Create a new topic

Submit Reply

Re: Encrypted storage with streaming (OpenSSL, AES) [message #25763 is a reply to message #25762]

Wed, 10 March 2010 21:33

koldo is currently offline

koldo
Messages: 3358
Registered: August 2008

Senior Veteran

kohait00 wrote on Wed, 10 March 2010 20:54

hi koldo,

as far as i got the point of mindtraveler, AES and the other symetric algorithms are not to be thought of beeing based on a "password", a user defined and therefore week combination of signs (which would be scanned first in a brute force attack), but on a statistically well distributed *binary* key (128 bit should be made wise Smile

Smile

. it is hard for a human beeing to generate one. so the computer will take over and provide some random ones(AES key generator). this key should be thought of as a "password", what it of corse isn't. everything else would diminish the stability of the key.
maybe to get over it, think of it as kind a GUID which you generate once for your application (which in real world communication does not apply Smile

Smile

. dont think of AES as sort of alphanumerical password dependant encryption algorithm, it's indeed, just as mindtraveler mentioned: math. i had the luck to enjoy some lectures cryptology, and it confuses sometimes. but the first thing we learned there was to forget the idea of passwords / human readable strings as security base.

Yes yes, all of you are right Smile

Smile

However think about for example a file encrypting software to be used by different people. How would you do it ?

Option 1: The software gives the user a 32 bytes random key
Option 2: The user enters a key

Option 1 seems much stronger. However file and hard disk encrypting software seems to choose option 2.

Best regards
Iñaki

Report message to a moderator

Send a private message to this user

[Message index]

		Encrypted storage with streaming (OpenSSL, AES) By: Mindtraveller on Wed, 16 September 2009 22:17
		Re: Encrypted storage with streaming (OpenSSL, AES) By: koldo on Thu, 17 September 2009 09:34
		Re: Encrypted storage with streaming (OpenSSL, AES) By: Weras on Thu, 17 September 2009 19:57
		Re: Encrypted storage with streaming (OpenSSL, AES) By: koldo on Thu, 17 September 2009 22:55
		Re: Encrypted storage with streaming (OpenSSL, AES) By: Mindtraveller on Fri, 18 September 2009 11:20
		Re: Encrypted storage with streaming (OpenSSL, AES) By: tojocky on Fri, 18 September 2009 12:28
		Re: Encrypted storage with streaming (OpenSSL, AES) By: koldo on Fri, 18 September 2009 13:23
		Re: Encrypted storage with streaming (OpenSSL, AES) By: Mindtraveller on Fri, 18 September 2009 14:01
		Re: Encrypted storage with streaming (OpenSSL, AES) By: koldo on Fri, 18 September 2009 23:01
		Re: Encrypted storage with streaming (OpenSSL, AES) By: kasome on Wed, 23 September 2009 03:29
		Re: Encrypted storage with streaming (OpenSSL, AES) By: koldo on Sat, 20 February 2010 17:08
		Re: Encrypted storage with streaming (OpenSSL, AES) By: Mindtraveller on Sat, 20 February 2010 23:19
		Re: Encrypted storage with streaming (OpenSSL, AES) By: koldo on Sun, 21 February 2010 08:07
		Re: Encrypted storage with streaming (OpenSSL, AES) By: koldo on Sun, 21 February 2010 10:38
		Re: Encrypted storage with streaming (OpenSSL, AES) By: Mindtraveller on Sun, 21 February 2010 12:01
		Re: Encrypted storage with streaming (OpenSSL, AES) By: koldo on Sun, 21 February 2010 15:40
		Re: Encrypted storage with streaming (OpenSSL, AES) By: koldo on Sun, 21 February 2010 16:01
		Re: Encrypted storage with streaming (OpenSSL, AES) By: koldo on Sun, 21 February 2010 19:25
		Re: Encrypted storage with streaming (OpenSSL, AES) By: Mindtraveller on Mon, 22 February 2010 00:48
		Re: Encrypted storage with streaming (OpenSSL, AES) By: koldo on Mon, 22 February 2010 07:54
		Re: Encrypted storage with streaming (OpenSSL, AES) By: Mindtraveller on Mon, 22 February 2010 08:31
		Re: Encrypted storage with streaming (OpenSSL, AES) By: koldo on Mon, 22 February 2010 08:50
		Re: Encrypted storage with streaming (OpenSSL, AES) By: koldo on Mon, 22 February 2010 11:55
		Re: Encrypted storage with streaming (OpenSSL, AES) By: Mindtraveller on Mon, 22 February 2010 12:24
		Re: Encrypted storage with streaming (OpenSSL, AES) By: koldo on Mon, 22 February 2010 12:46
		Re: Encrypted storage with streaming (OpenSSL, AES) By: tojocky on Mon, 22 February 2010 15:19
		Re: Encrypted storage with streaming (OpenSSL, AES) By: koldo on Mon, 22 February 2010 16:46
		Building with MSC9 By: kohait00 on Wed, 03 March 2010 23:17
		Re: Building with MSC9 By: koldo on Sat, 06 March 2010 01:49
		Re: Building with MSC9 By: kohait00 on Sun, 07 March 2010 11:24
		Re: Building with MSC9 By: koldo on Sun, 07 March 2010 13:47
		Re: Building with MSC9 By: kohait00 on Sun, 07 March 2010 16:08
		Re: Encrypted storage with streaming (OpenSSL, AES) By: koldo on Wed, 10 March 2010 17:09
		Re: Encrypted storage with streaming (OpenSSL, AES) By: kohait00 on Wed, 10 March 2010 20:54
		Re: Encrypted storage with streaming (OpenSSL, AES) By: koldo on Wed, 10 March 2010 21:33
		Re: Encrypted storage with streaming (OpenSSL, AES) By: kohait00 on Wed, 10 March 2010 22:36
		Re: Encrypted storage with streaming (OpenSSL, AES) By: koldo on Thu, 11 March 2010 09:12
		Re: Encrypted storage with streaming (OpenSSL, AES) By: kohait00 on Thu, 11 March 2010 10:29
		Re: Encrypted storage with streaming (OpenSSL, AES) By: Mindtraveller on Thu, 11 March 2010 10:53
		Re: Encrypted storage with streaming (OpenSSL, AES) By: koldo on Thu, 11 March 2010 11:01
		Re: Encrypted storage with streaming (OpenSSL, AES) By: Mindtraveller on Fri, 12 March 2010 21:41
		Re: Encrypted storage with streaming (OpenSSL, AES) By: koldo on Sun, 14 March 2010 15:27
		bazaar: DeEncrypter By: kohait00 on Thu, 05 August 2010 21:09
		Re: bazaar: DeEncrypter By: Mindtraveller on Sat, 07 August 2010 07:14
		Re: bazaar: DeEncrypter By: kohait00 on Sun, 08 August 2010 11:05
		Re: bazaar: DeEncrypter By: Mindtraveller on Tue, 10 August 2010 15:33
		Re: bazaar: DeEncrypter By: kohait00 on Tue, 10 August 2010 15:46
		Re: bazaar: DeEncrypter By: Mindtraveller on Tue, 10 August 2010 21:14
		Re: bazaar: DeEncrypter By: kohait00 on Tue, 10 August 2010 21:42
		Re: bazaar: DeEncrypter By: Mindtraveller on Wed, 11 August 2010 09:43
		Re: bazaar: DeEncrypter By: koldo on Wed, 11 August 2010 15:29
		Re: bazaar: DeEncrypter By: Mindtraveller on Thu, 12 August 2010 10:22
		Re: bazaar: DeEncrypter By: koldo on Thu, 12 August 2010 13:54
		Re: bazaar: DeEncrypter By: kohait00 on Tue, 17 August 2010 15:58
		Re: bazaar: DeEncrypter By: koldo on Fri, 25 February 2011 18:52
		Re: bazaar: DeEncrypter By: Mindtraveller on Thu, 21 April 2011 14:28
		Re: Encrypted storage with streaming (OpenSSL, AES) By: Alboni on Fri, 23 August 2013 01:59

Previous Topic:	Protect packages - split code encryption,client and server
Next Topic:	Added single and double linked lists

Goto Forum:

-=] Back to Top [=-

[ Syndicate this forum (XML) ] [

] [

PDF

]

Current Time: Mon Apr 29 14:39:27 CEST 2024

Total time taken to generate the page: 0.03111 seconds