[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-Disclosure] Time Expiry Alogorithm??

To: Florian Weimer <fw@xxxxxxxxxxxxx>
Subject: Re: [Full-Disclosure] Time Expiry Alogorithm??
From: Andrew Farmer <andfarm@xxxxxxxxxxxx>
Date: Tue, 23 Nov 2004 12:36:52 -0800

On 22 Nov 2004, at 12:47, Florian Weimer wrote:

* Georgi Guninski:
would prefer to keep my secrets encrypted with algorithm whose breaking requires *provable* average runtime x^4242 or even x^42 instead of *suspected runtime* 2^(x/4).
It depends on the constant factors you omitted, including those in the
lower-order terms. 8-)
AES can be broken with O(1) effort, but the constant is so huge that
it's considered impractical.  IIRC, OpenPGP has an upper bound for key
length, too, so it too can be broken with O(1) effort as well.
Obviously, this isn't particularly meaningful.


Especially considering that there aren't enough atoms in the universe to
store all that precalculated data, nor enough energy to do all the
calculations.

(Schneier says that there's enough energy in a supernova to do about 2^224 operations on a 100% efficient computer. And remember that AES or PGP take multiple operations to calculate results...)

Attachment: PGP.sig
Description: This is a digitally signed message part

Follow-Ups:
- Re: [Full-Disclosure] Time Expiry Alogorithm??
  - From: Florian Weimer

References:
- Re: [Full-Disclosure] Time Expiry Alogorithm??
  - From: Anders Langworthy
- Re: [Full-Disclosure] Time Expiry Alogorithm??
  - From: Pavel Kankovsky
- Re: [Full-Disclosure] Time Expiry Alogorithm??
  - From: Georgi Guninski
- Re: [Full-Disclosure] Time Expiry Alogorithm??
  - From: Florian Weimer

Prev by Date: [Full-Disclosure] scannig through public anonymous proxy
Next by Date: RE: [Full-Disclosure] Google homepage Italiano logo
Previous by thread: Re: [Full-Disclosure] Time Expiry Alogorithm??
Next by thread: Re: [Full-Disclosure] Time Expiry Alogorithm??
Index(es):
- Date
- Thread