kaas

kaas

Anyhow, AES is the best symmetric encryption these days.

There's a related-key attack on aes-192 and aes-256. Look up AES security on wikipedia. I'm not saying it's broken, just that it's had an attack published whereas AES-128 hasn't.

A thumb drive doesn't automatically backup your files

Neither does a piece of paper.

hows about a thumb drive

192-bit AES is less secure than 128-bit AES, due to vulnerabilities in the AES key scheduling. 128-bit symmetric keys are plenty secure these days.

What vulnerability for 192-bit AES is that?

This is exactly the same as the public/private key authentication that SSH uses, except they've come up with a novel way of securing the private key. Secure for sure, but somewhat inconvenient and slow to use. I've found storing your private key on a usb key to be more than acceptable.

If nothing else, the nerd in me positively loves this. :)

Seriously, this gives me total nerd-chills. ;P

hehe me 2

I'd recommend this to the UK government for all their databases, but no doubt they'd just leave it on a train somewhere...

and this is practical how?

A paper key? What happens if you loose it? Soak it in water? Rip it? Eat it?

And since when are 8 characters 46 bits? 8*8=46?

And this is not twice as secure as banks just because the key size is twice the size...

When you enter alphanumeric passwords you don't use all 256 characters; most people use a-z and have to be nagged to use A-Z and 0-9.

If you use passwords only containing a-z you're only adding about 5 bits of entropy per password letter.

Ahh, thanks =D

Bits of entropy. Big difference.

You don't get 8 bits in a character. The range of characters you can make on your keyboard is less than 128 characters (7 bits) since you can't type high-ascii (character map aside) or even the control codes like the null byte. So say 6.5 bits. 6.5*8=52

I will glue my paper key to the back of a painting, classic

passwords are nothing compared to this security level.

Very nice!

2 times more secure then banks! impresive :)

@sjoerdfit 4K aren't twice as secure as 2K keys, they are 2 to the power of 2K more secure, which is a very big number!

I think he was talking about less security from brute force, and more of thieves and the like.

@thebramp Not 4k are even less then two times secure! As RSA is 1024bits is equivalent to 80-bits of security, and 15360-Bit RSA is equivalent to 256-bits of security.

Having a big modulus ( i.e. 4096-bits) does *not* mean that this that this is real security bits. The underlying problem is Factorization, i.e. the modulus n is a product of two primes p and q. Finding the factorization n, i.e. finding p and q for n, will only take 2^80 calculations for a 1024-bits, hence the 80bits.