| |
| |
| |
|
Page: 1 2 3 4 5 6 7 8 9 10
Comments:
<0> i've also been considering encrypting the login (data is already encrypted)
<0> do you think using symmetric encryption is a bad thing?
<0> cuz
<0> the people that add the users to the server would have to manually give the key to the people using the client
<0> which i think is the safest way to do things
<1> whats wrong with public key?
<0> I HATE PUBLIC KEY
<0> =D
<0> thats what
<0> :)
<0> middle man
<0> and to get rid of that chance then you have to use a third party key validation thingy
<0> like verisign
<0> i want to avoid that
<1> huh?
<1> what are you talking about?!
<0> the middle man attack
<0> when it comes to public key cryptograph
<0> y
<1> ummmm i donno if you actually understand how that works
<0> lol
<1> SSL uses public key
<0> dood
<1> thats why web sites use it
<0> i dont wanna toot my own horn but
<2> doe TXPManifest just allow for XP theme use?
<0> i know my crypto
<1> because it elimiated middle man
<0> and i know my ssl
<1> eliminates
<0> not completely :P
<0> but
<0> SSL does make it way harder
<0> almost impossible
<0> in any case
<0> ssl has to use a third party key place /certificate
<1> yes
<0> to avoid them middle man attack
<0> and thats what i just said i want to avoid
<1> huh?
<1> what does 3rd party have to do with that?
<0> ok
<0> my terminology is poor.. always has been
<0> what do you want to call it?
<0> certificate place?
<1> 3rd party is just the signer, it has nothing to do with encryption used behind it
<0> i dont want to have a signer!
<0> :)
<0> dan!
<1> who said you HAD TOO!?
<0> oh gawd
<0> sorry i asked man
<0> =D
<1> ssl uses public key encryption, but public key encryption doesn't have to use ssl
<3> cmf!
<0> rahly: like i said, i know my crypto, i know exactly what i have to do to use either symmetric or ***ymetric
<0> my quesiton is
<1> you don't have to use a third party signer, thats something ssl doesn't for web browsers
<3> Been out cruising in the 210 all day :P
<0> do you think that it's a pain in the *** for a server administrator to have to distribute symmetric keys to his users?
<3> Mmmm.. smoking tires
<1> cmf: very
<0> dan: nice
<0> even though it's safer than public key
<0> :)
<1> not really
<1> it can be decoded with brute force, just like public can
<0> huh?
<0> you think you can brute force 128 bit symmetric?
<0> gooood luck
<0> hey
<0> another question
<3> http://flammehav.com/temp/210.jpg
<3> <3
<0> even though 128 bit crypto is fine for everything on earth.. do you think i should have the option of using 256 just for those peopel that are completely retarded? =D
<1> 128bit symmetric is a lot easier than 1024bit public key
<0> ????????
<0> rahly: i think it's you that should do some more reading about crypto
<1> for what?
<4> Greetings
<1> its a lot shorter to go through 128bit numbers than 1024bit numbers
<0> but when it comes to public key you dont have to go through ALL the numbers from 0-2^1024
<0> with symmetric you do
<0> you can use the extended euclidean algorithm
<0> to decide which numbers you should try
<0> from 0-1024bit
<0> 2^
<4> I'm looking for books that would help someone start to learn Delphi, can anyone suggest some please?
<0> Imagine a computer that is the size of a grain of sand that can test keys against some encrypted data. Also imagine that it can test a key in the amount of time it takes light to cross it. Then consider a cluster of these computers, so many that if you covered the earth with them, they would cover the whole planet to the height of 1 meter. The cluster of computers would crack a 128-bit key on average in 1,000 years.
<0> If you want to brute-force a key, it literally takes a planet-ful of computers. And of course, there are always 256-bit keys, if you worry about the possibility that government has a spare planet that they want to devote to key-cracking.
<0> hahaha
<0> sorry for the long past
<1> symmetric also means you have to give the key out, as well, the key to encode is the key to decode, its way unsafer than public key, in which the decoding key never has to be transfered
<0> uhh you never transfer a symmetric key either
<0> that would mean it was a restricted algorithm
<0> and would negate the purpose of encryption
<1> "A symmetric cipher is one in which a given key is used to encrypt data, and that same key must be used to decrypt the data."
<0> lol
<0> thanks for that lesson in cryptography =D
<1> not a lesson
<0> "Just a comment on 1,024 bit keys (vs. 128 bit): don't confuse symmetric cryptography with public-key cryptography (where 1,024 bit keys are commonly used with e.g. RSA). You cannot compare the two."
<1> and it doesn't negate the purpose of encryption
<0> "1024 vs 128 is different; public key encryption has significant key-reduction algorithms applicable, so the bitlength has to be much higher to compensate (1024 is standard now, the paranoid go with 2048+)."
<1> in fact, a lot of programs use that
<0> lol
<0> wait
<1> like zip, or rar
<0> are you telling me that a lot of programs send the symmetric encryption key along with the data??"
<1> its not good for network transfer though
<1> no
<0> it does negate the purpose if you do that
<0> without a doubt
<1> they use a p***word to generate a symmetric key for encrypting data
<0> it's like getting the most expensive lock available for your house and leaving the key in it all the time
<1> that same p***word has to be use to decrypt it
<0> obviously
<1> which is great for files or archived data
<1> not good for network transfering
<0> depends
<0> it's not good for anonymous people using networks
<0> such as customers using a service
<0> but for employees using a service
<0> that's different
<1> because if you encrypt the data, the sender has to decrypt it, to which they need the key
<0> because the employees have real contact with the server admin
<1> did you know, that the #1 reason networks get compromised is because of employees, not outside hackers
<0> no i didnt, but that doesnt have anything to do with our discussion right?
<1> if you are going to change the rules, from anonymous to employees
<1> it shouldn't matter, in the case of encryption
<0> it works with anonymous people too
<0> but
<0> the key has to be transmitted by hand
<0> or through a safe medium
<1> lol
<0> anyways
<3> c to the mf..
<0> we are way off track
<0> we're not even argueing about the same thing
<1> if you say so
<3> I'm going to go to besseggen in a couple weeks!
<0> dan: ??
<3> http://images.google.no/images?q=besseggen&ie=UTF-8&oe=UTF-8&client=firefox-a&rls=org.mozilla:en-US:official&sa=N&tab=wi pretty pretty
<0> dan: holy **** that looks nice
<0> you lucky mo****a
<0> =D
<3> =)
<0> so.. is it possible to do this bike trip in like june?
<1> i like this one the best -> http://www.photoseek.com/81NOR-15-10-LakesGjendeBessvatn.jpg
<0> or even may?
<0> or is it still too much snow?
<0> i dont mind cold
Return to
#delphi
or
Go to some related
logs:
#stocks
#online
#beginner
#microsoft
channel 12 and sopranos tonight
#politics
Psycho compiler python
#3dsmax
#freebsd
koukla, fran and ollie
|
|
