> -----Original Message----- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED] On Behalf Of Baker Hughes > Sent: Friday, August 25, 2006 1:35 PM > To: [email protected] > Subject: [U2] Encrypt Algorithms > > Do you think a certain algorithm should be AVOIDed because it's been > cracked? > I've heard des3 has been cracked, but not sure which mode > (cbc, cfb, or > ofb) was cracked, or whether it matters. > > The discussion can take in other encryption methods, openssl, > gpg, etc. > U2 offers rc4, des3, rc2, rc5 - I'm not listing anything < 128 bit.
I believe DES was cracked in a day using massively parallel computing. I don't know about DES3. We're using the DES3 capability built into UV. I think any encryption is going to be crackable given enough time and money on the part of the cracker. You have to ask yourself how valuable is the data I'm encrypting, and who is it valuable to. If you want to keep your data hidden from the intelligence services of a major government (eg. you work for a DOD sub-contractor), then you've got your work cut out for you. If you want to keep some credit card numbers hidden from Joe Hacker, probably any 128-bit encryption method is enough to send him looking for easier prey. This is all just my opinion of course. -John ------- u2-users mailing list [email protected] To unsubscribe please visit http://listserver.u2ug.org/
