Thats why lots of people like Blowfish, including myself. I am
using it in a production environment with PHP and mcrypt.
In ECB mode, the blocks are encrypted independently, whereas in
CBC mode, the blocks are encrypted with information based on the
What this means is that if a particular block which was encrypted
using ECB mode is decrypted, it would show the plain text, whereas
it wont happen if the data was encrypted using CBC mode.
Plain text files can be seen and understood, whereas its much more
difficult to understand if the crack attempt on a block of binary
data was successful, since the data wont necessarily make any
On Wed, 22 May 2002 John Horton wrote :
>One of the reasons I like Blowfish is that I have used it for
>there have been no successfull attempts to crack it.
>Why do you encrypt binary files in ebc and text files in cbc?
> From: Vinod Panicker [mailto:[EMAIL PROTECTED]]
>Sent: 22 May 2002 10:25
>To: John Horton
>Cc: [EMAIL PROTECTED]; Jimmy Lantz
>Subject: Re: RE: RE: [PHP] Mcrypt: Blowfish or Twofish or no
>And why not use AES, which is an industry standard and having
>being proven as the best encryption algorithm in recent times?
>As far as ECB mode is concerned, I dont know what problems you
>talking about. I'm aware that the data gets encrypted in
>independed blocks and its easier to crack it, but its faster
>On Wed, 22 May 2002 John Horton wrote :
> >why use AES? Blowfish can have a 448 bit key size! Also, why
> >ebc mode
> >with all the problems which come with it?
> >-----Original Message-----
> > From: Vinod Panicker [mailto:[EMAIL PROTECTED]]
> >Sent: 22 May 2002 10:06
> >To: Jimmy Lantz
> >Cc: [EMAIL PROTECTED]
> >Subject: Re: RE: [PHP] Mcrypt: Blowfish or Twofish or no
> >part 3
> >There is no use of hashing in file-encryption except to use
> >a check - to see if the decrypted file matches the original
> >To do this check, you can use either MD5 or SHA1. The choice
> >If ur looking for a good encryption algorithm, you might want
> >consider AES (Rijndael). It supports encryption using
> >key sizes as well as all modes.
> >You can take your pick from ECB / CBC also. For binary file
> >encryption, i would recommend ECB mode. For text files, it
> >be better that you use CBC mode.
> >On Wed, 22 May 2002 Jimmy Lantz wrote :
> > >
> > >
> > >>I believe that twofish has been successfully broken, so
> > >>blowfish
> > >>instead. Typically, for encrypting files you will use an
> > >>algorithm like
> > >>blowfish in cbc mode (as opposed to ebc mode) but I don't
> > >>if Mcrypt
> > >>supports this. Also, when creating the hash of the file,
> > >>probably best
> > >>to use SHA-1 instead of MD5, as there appears to be some
> > >>with MD5
> > >>over it's compression function.
> > >>HTH
> > >>JH
> > >
> > >It helps :)
> > >I have been looking into Blowfish with cbc mode :)
> > >If I use SHA-1 it's still no way to dehash it during
> > >of the file,
> > >so I fail to see the use of Hashing in fileencryption.
> > >Could someone enlighten me?
> > >/ Jim
> > >
> > >
> > >-- PHP General Mailing List (http://www.php.net/)
> > >To unsubscribe, visit: http://www.php.net/unsub.php
> > >
> >Click below to visit monsterindia.com and review jobs in
> >PHP General Mailing List (http://www.php.net/)
> >To unsubscribe, visit: http://www.php.net/unsub.php
>Click below to visit monsterindia.com and review jobs in India
Click below to visit monsterindia.com and review jobs in India or
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php