[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: !! Point 'n Crypt -- Win95 Privacy for Everyone !!

To: [email protected], [email protected]
Subject: RE: !! Point 'n Crypt -- Win95 Privacy for Everyone !!
From: "Peter Trei" <[email protected]>
Date: Thu, 19 Dec 1996 10:57:56 -6
CC: trei
Comments: Authenticated sender is <trei@popserver>
Organization: Process Software
Priority: normal
Reply-to: [email protected]
Sender: [email protected]

> From:          Walt Armour <[email protected]>

> Subject:       RE: !! Point 'n Crypt -- Win95 Privacy for Everyone !!

> Security through obscurity is no security at all.
> 
> As for PnC (actually, the scCryptoEngine beneath it), we get the 40 bits 
> from the 56 bits by nulling out the high nybble of every other byte.
> 
> walt
> 
> ----------
> From: 	Peter Trei[SMTP:[email protected]]

> Would you mind telling us just how you expand the 40 key to the 56
> bits needed for DES? (Security through obscurity has a bad rep on
> this list). For many  methods of doing so, 40bit DES is NOT
> secure against a motivated individual's attack.
> 
> Peter Trei
> [email protected]

Thanks for being so forthcoming!

There are methods for using 40 bit keys that are a lot better than
this. My contention stands: 50 200MHz Pentiums *WILL* crack this
overnight. A single 100 MHz Pentium will do it in a month. (This
assumes a known plaintext attack in EBC or CBC mode).

Not utterly trivial, but well within the means of a motivated
individual.

Peter Trei
[email protected]

Prev by Date: Re: Encryption ?
Next by Date: Re: Proof that "cypher punks" have complete degenerated...
Prev by thread: RE: !! Point 'n Crypt -- Win95 Privacy for Everyone !!
Next by thread: Alegedly "Breaking News."
Index(es):
- Date
- Thread