Hosting Provided By

Re: SHA-1 vs. triple-DES for password encryption?

From: John Viega <viega(at)securesoftware.com>
Date: Mon Nov 18 2002 - 17:24:59 EST

It's fine to use CBC-MAC (or Davies-Meyer, etc...), but the construct hinted at in the thread was the descrypt model, which naively encrypts a string of zeros using the password as a key (more or less).

John

On Mon, Nov 18, 2002 at 08:46:30AM +0100, Steffen Dettmer wrote:
> * David Wagner wrote on Tue, Nov 12, 2002 at 17:11 +0000:
Received on Mon Nov 18 22:22:06 2002

This message: [ Message body ]
Next message: Alec Kosky: "Re: Are bad developer libraries the problem with M$ software?"
Previous message: Michael Howard: "RE: Are bad developer libraries the problem with M$ software?"
In reply to Steffen Dettmer: "Re: SHA-1 vs. triple-DES for password encryption?"
Next in thread: Ben Laurie: "Re: SHA-1 vs. triple-DES for password encryption?"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 14:02:44 EDT