Dave Noha writes:
...
B) Encrypt important metadata in some way and put it in
Storable fields in the real header. Perhaps based on the
original key, so seeing the hashed key wouldn`t be enough to
decrypt the metadata, but anyone with the real key could do it
(forgive me if that`s not good enough, I`m no cryptologist).
The technique IKE uses is to concatenate a single integer (e.g., 0) onto
the end of what would be the "original key," and hashing that to get the
encryption key. If it's good enough for the IPSec cryptographers, it's
good enough for me...
Actually, the real concern in any such proposal is the entropy in the
original key. Schneier has asserted that an English phrase needs 60 (I
think) characters before it has enough entropy to be secure. Keys based
on filename syntax may be a little bit better, but not much.
_______________________________________________
Freenet-dev mailing list
Freenet-dev at lists.sourceforge.net
http://lists.sourceforge.net/mailman/listinfo/freenet-dev
