[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Cost of brute force decryption

To: "Bruce M." <[email protected]>
Subject: Re: Cost of brute force decryption
From: "Deranged Mutant" <[email protected]>
Date: Wed, 5 Jun 1996 02:01:45 +0000
CC: [email protected]
Comments: Authenticated sender is <[email protected]>
Organization: What organization?
Priority: normal
Sender: [email protected]

On  4 Jun 96 at 10:58, Bruce M. wrote:

[..]
> 	"If you can ensure secrecy either until no one cares about the 
> information or so that cracking the code costs more than the information 
> is worth, it's 'secure enough.'
> 
> 	"For example a 40-bit key takes about $10,000 worth of supercomputer 
> time and two weeks to crack.  Although this key may be adequate to 
> protect my checking account, it's probably not large enough for the 
> accounts of a major corporation.
[..]

The figures look familiar.  No references around.  I'm not sure it would 
require a whole two weeks for 40-bits, though.  Possibly less than a 
day? (Or was that why you asked baout the figures?)

The "$10,000 worth of supercomputer time" is fuzzy.  One thing that's
left out is that once an organization already owns the equipment and 
has the money to spare, it may be worthwhile to crack things of less 
importance like personal checking info, email, etc.

Rob.

---
No-frills sig.
Befriend my mail filter by sending a message with the subject "send help"
Key-ID: 5D3F2E99 1996/04/22 [email protected] (root@magneto)
        AB1F4831 1993/05/10 Deranged Mutant <[email protected]>
Send a message with the subject "send pgp-key" for a copy of my key.

Follow-Ups:
- Re: Cost of brute force decryption
  - From: "Bruce M." <[email protected]>
- Re: Cost of brute force decryption
  - From: Steve Reid <[email protected]>

Prev by Date: Re: FOR WHOM THE BELL TOLLS
Next by Date: Re: Java
Prev by thread: Cost of brute force decryption
Next by thread: Re: Cost of brute force decryption
Index(es):
- Date
- Thread