Saturday, 19 May 2012
Home arrow Security information arrow Encryption
Security software
Anti spam tools
Anti spyware tools
Antivirus
Backup
Encryption
Firewall
Free software
Passwords managers
Popup ad blockers
Other
Other
Submit software
Security news
Security information
Contact us


RSS
Security software
Security software


Sell software online
Affiliate Programs
Hand guns


Encryption
Sunday, 23 October 2005
Being able to encrypt information has been proven time and time again one of the best methods of improving computer security, so the fact that all encryption falls under weakness probably seems like a paradox. However, encryption is merely an added security feature with multiple weaknesses that can be addressed. Yes, it is better to have encryption than to be without it, but ignoring the weaknesses will court disaster. All encryption techniques are subject to the possibility of three possible flaws: • Cryptographic Short Cuts
• Speed of Computer
• Lack of a Sufficiently Random Key

These flaws keep all encryption from becoming an absolute, although the degree of weakness can be lessened as a result.

Many types of encryption can be weakened by optimization and short cuts to the operation, which yield faster speed. Cryptography is a different form of computing which works against the grain of the teachings a typical computer programmer would receive: slower is better. By attempting more possibilities in duration of time, a slower cryptographic process will yield fewer attempts at breaking it than a method that is considerably faster. More attempts to break in equate to a better chance of guessing the key.

Some methods of cryptography have been bypassed ENTIRELY, allowing a straight conversion. In these cases, classified as vulnerabilities of the Read Restricted severity, the encrypted information can easily be converted to plaintext as if there was no encryption.

Cryptography typically was made for the time it was created. If the encryption takes too long to compute, it won't work with most applications. As one of the “original” benchmarks, DES (Digital Encryption Standard) was expected to perform a single “hash” to validate a user's password on a PDP-11 computer in the late 1970s. The PDP-11 was considered one of the fastest computers of its time. Nowadays, a reasonably priced personal computer can perform 15,000 of these comparisons in the same second.


Although the variety of life and vastness of the universe seem to imply extreme chaos, when it comes to seeking out chaos that can be relied upon, cryptographers have come up short. Either users whom have failed to pick bad passwords, or simply because its easy to trace the steps how a random number was reached, if a key is easily guessed, the entire encryption fails.
 
< Prev   Next >
[ Back ]
© 2004-2007 Daita.org