Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Date: Sun, 29 Mar 2020 19:15:09 +0200
From: Matus UHLAR - fantomas <>
Subject: Re: Two security-related questions

On 29.03.20 08:37, Powen Cheng wrote:
>I don’t think you can prevent anyone from decrypt your file. Since you are
>using the still using the standard AES library and commercial compressor
>archiver. The only way is write your own encryption method and using salts
>with passwords and for extra measure.

I don't think writing own encryption method is a way to go, unless you are
very good in cryptology.  Using well-known encryption methods with safe
passwords is better.

AES is fine until someone cracks it or until it becomes weak for current

> Salted it again and since you will be
>writing this encryption program. No one will be able to decrypt your file
>unless you provide the decryption program. So, In long run way. You still
>cannot build a full proof system since quantum computing is coming to us in
>near future. The only thing I think is full proof is biometric encryption
>with a physical encryption key. Hell, throw on the password requirement
>while you are at it.

2-factor authentication usually means 1.  something you have 2.  something
you know.

>On Sun, Mar 29, 2020 at 6:59 AM Johny Krekan <> wrote:
>> 1. If you could choose - which archiver to choose to securely encrypt
>> files which one you would choose (7zip or rar).
>> 2. If I use standard AES library and write mi own small program to
>> encrypt data for example file, so after encryption the person who gets
>> the file using illegal methods (for example by hacking in to the system)
>> but will not have my encryption tool, how hard it will be for this
>> person to decrypt the encrypted file?
>> Chosen password will be for example 12 character password like for
>> example !141BCDeg9aa

Matus UHLAR - fantomas, ;
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
The 3 biggets disasters: Hiroshima 45, Tschernobyl 86, Windows 95

Powered by blists - more mailing lists

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.