e
> >ebc mode
> >with all the problems which come with it?
> >JH
> >
> >-Original Message-
> > From: Vinod Panicker [mailto:[EMAIL PROTECTED]]
> >Sent: 22 May 2002 10:06
> >To: Jimmy Lantz
> >Cc: [EMAIL PROTECTED]
> >Subject: Re: RE: [PHP]
ad of MD5, as there appears to be some concern with
> MD5 over it's compression function.
> HTH
> JH
>
> -Original Message-
> From: Jimmy Lantz [mailto:[EMAIL PROTECTED]]
> Sent: 21 May 2002 17:28
> To: [EMAIL PROTECTED]
> Subject: [PHP] Mcrypt: Blowfish or Two
Ah it would be a good idea to use the hash as a checksum- especially if you
encrypt in ECB
On Wednesday 22 May 2002 01:30 am, Jimmy Lantz wrote:
> >I believe that twofish has been successfully broken, so use blowfish
> >instead. Typically, for encrypting files you will use an algorithm like
> >
o be some concern with
> MD5 over it's compression function.
> HTH
> JH
>
> -Original Message-
> From: Jimmy Lantz [mailto:[EMAIL PROTECTED]]
> Sent: 21 May 2002 17:28
> To: [EMAIL PROTECTED]
> Subject: [PHP] Mcrypt: Blowfish or Twofish or no fish?
>
blems which come with it?
> >JH
> >
> >-Original Message-
> > From: Vinod Panicker [mailto:[EMAIL PROTECTED]]
> >Sent: 22 May 2002 10:06
> >To: Jimmy Lantz
> >Cc: [EMAIL PROTECTED]
> >Subject: Re: RE: [PHP] Mcrypt: Blowfish or Twofish or no fish?
On Wed, 22 May 2002, Jimmy Lantz wrote:
> Thanx for the suggestions!
> Someone mentioned that I could use MD5 and then encrypt the hash,
> how would I ever decrypt that? Is'nt MD5 a 1-way thing only?
>
> Another question?
> Should I go for bigger keylength or bigger blocksize or both? What makes
I always hate mentioning this 'cause I feel like an attention whore or
something, but nevertheless, I can't get the thing tested thouroughly
without a bit of whoring...
I've been working on a crypto extension for PHP for a while now, and since
you guys seem into the crypto thing, you might li
s in ebc and text files in cbc?
>JH
>-Original Message-
> From: Vinod Panicker [mailto:[EMAIL PROTECTED]]
>Sent: 22 May 2002 10:25
>To: John Horton
>Cc: [EMAIL PROTECTED]; Jimmy Lantz
>Subject: Re: RE: RE: [PHP] Mcrypt: Blowfish or Twofish or no
>fish? part
>
: John Horton
Cc: [EMAIL PROTECTED]; Jimmy Lantz
Subject: Re: RE: RE: [PHP] Mcrypt: Blowfish or Twofish or no fish? part
3
And why not use AES, which is an industry standard and having
being proven as the best encryption algorithm in recent times?
http://csrc.nist.gov/encryption/aes/aesfact.html
As
nal Message-
> From: Vinod Panicker [mailto:[EMAIL PROTECTED]]
>Sent: 22 May 2002 10:06
>To: Jimmy Lantz
>Cc: [EMAIL PROTECTED]
>Subject: Re: RE: [PHP] Mcrypt: Blowfish or Twofish or no fish?
>part 3
>
>
>There is no use of hashing in file-encryption except to u
or Twofish or no fish? part 3
There is no use of hashing in file-encryption except to use it as
a check - to see if the decrypted file matches the original file.
To do this check, you can use either MD5 or SHA1. The choice is
urs.
If ur looking for a good encryption algorithm, you might want
with the
algorithm (or the data was corrupted somehow).
Hashes are typically used as sanity checks in this way.
JH
-Original Message-
From: Jimmy Lantz [mailto:[EMAIL PROTECTED]]
Sent: 22 May 2002 09:31
To: [EMAIL PROTECTED]
Subject: RE: [PHP] Mcrypt: Blowfish or Twofish or no fish? part 3
There is no use of hashing in file-encryption except to use it as
a check - to see if the decrypted file matches the original file.
To do this check, you can use either MD5 or SHA1. The choice is
urs.
If ur looking for a good encryption algorithm, you might want to
consider AES (Rijndael).
>I believe that twofish has been successfully broken, so use blowfish
>instead. Typically, for encrypting files you will use an algorithm like
>blowfish in cbc mode (as opposed to ebc mode) but I don't know if Mcrypt
>supports this. Also, when creating the hash of the file, it is probably best
>
st
to use SHA-1 instead of MD5, as there appears to be some concern with MD5
over it's compression function.
HTH
JH
-Original Message-
From: Jimmy Lantz [mailto:[EMAIL PROTECTED]]
Sent: 21 May 2002 17:28
To: [EMAIL PROTECTED]
Subject: [PHP] Mcrypt: Blowfish or Twofish or no fish?
H
:[EMAIL PROTECTED]]
Sent: Wednesday, May 22, 2002 12:58 AM
To: [EMAIL PROTECTED]
Subject: [PHP] Mcrypt: Blowfish or Twofish or no fish? Part 2
Thanx for the suggestions!
Someone mentioned that I could use MD5 and then encrypt the hash, how
would I ever decrypt that? Is'nt MD5 a 1-way thing
Yes Jimmy, you are correct. MD5 is a one-way hash. Its used for
getting a unique fingerprint of some data (like files / passwords
etc) so that it can be compared with another MD5 hash.
Thats the point of a hashing algorithm like MD5 and SHA1 - you
should never need to decrypt the data.
Refe
Thanx for the suggestions!
Someone mentioned that I could use MD5 and then encrypt the hash,
how would I ever decrypt that? Is'nt MD5 a 1-way thing only?
Another question?
Should I go for bigger keylength or bigger blocksize or both? What makes
for the best encryption?
/ Jim
(and before someon
On Tue, 21 May 2002, Jimmy Lantz wrote:
> Hi,
> started playing with Mcrypt and just wanted to ask which encryption method
> makes the stronger encryption?
> (I can supply the necesary keylength).
> Should I go for MCRYPT_BLOWFISH or MCRYPT_TWOFISH? Or no fish at all :)
>
> So what do I need it
;d be a warning on the Mcrypt page).
HTH,
Dw
Sqlcoders.com Dynamic data driven web solutions
- Original Message -
From: "Jimmy Lantz" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: May 21 2002 09:27 AM
Subject: [PHP] Mcrypt: Blowfish or Twofish or no fish?
&
Hi,
started playing with Mcrypt and just wanted to ask which encryption method
makes the stronger encryption?
(I can supply the necesary keylength).
Should I go for MCRYPT_BLOWFISH or MCRYPT_TWOFISH? Or no fish at all :)
So what do I need it for? I'm going to use it encrypting files, sizes
vari
21 matches
Mail list logo
