Users who Dugg This
The Nayshun
772 Followers
Neal Weinberg
18 Followers
ladfrombrad
33 Followers
nahsrocketeer75
5732 Followers
Back on Digg
4084 Followers
michichaelJul 21, 2010
And once it's in place, certificate interception techniques will also become common place. It's an arms race. :)
skintighJul 21, 2010
They were talking about using public keys, not certificates.
alphadoggsJul 21, 2010Submitter
Once tried to get EMC -- owner of RSA -- to tell me about how its companywide rollout went. Figured they could toot their own horn but that it would still be interesting to hear how they did it. They never got back to me, leading me to think, this encryption stuff might not be so easy after all...
prettyboyfloydJul 21, 2010
As hard as it is to teach my users how to implement even the simplest of encryption tools (TrueCrypt, PGP, BitLocker, etc.), this new protocol would be a godsend if it gets accepted as a standard. Encrypted traffic by default? I'm THERE!! Where do I sign up?
jagpopJul 21, 2010
There goes history.
When future archeologists sift through the ashes of our "buried" so-called civilization
will the babel they find lead them to think we were just a million monkeys?Comment is buried, click here to see the rest.
frakkinbastardJul 21, 2010
Nothing will be left of our current civilization. Magnetic and optical storage will have fully degraded and concrete is not as durable as stone. Future archaeologists will have very little to work on, but then it's not like it's a big loss.Comment is buried, click here to see the rest.
spiralspiritJul 21, 2010
it will all be irradiated and made of chinese plastic.
acidtonicJul 21, 2010
@spiralspirit
No we're talking about the FUTURE products the Chinese make.
Your example of how they make goods now is appreciated though.
suricouJul 21, 2010
There is massive redundency though. Just think how many copies must exist of a popular film, for example - hundreds of millions of discs. It only needs one to survive and be found. Or not even that. Even if you can only scavenge tiny bits of intact data, a few meg from each disc, they could all be stitched together.
skintighJul 21, 2010
This is transportation, not storage
rudegarJul 21, 2010
my public key is under the doormat!
flarn2006Jul 21, 2010
Where's your private key?
pault107Jul 21, 2010
Under the plant pot.
solkreJul 21, 2010
But but... then how can a ISP know who's data to f**k with?!
Closed AccountJul 21, 2010
They'll just f**k with everybodies data.
solkreJul 21, 2010
If I can't tell what it is, then it's obviously a torrent!
skintighJul 21, 2010
Port number
suricouJul 21, 2010
This is why much p2p software long ago switched to using a random port by default, and just about all competent users change theirs first-thing after install anyway.
ISPs responded with deep packet inspection.
falserJul 21, 2010
There's no way the government will let that happen.
wiseguy1020Jul 21, 2010
Hell yeah, over at Ft. Meade they would be s**tting bricks.
pstrollJul 21, 2010
digg VPN
philodygmnJul 21, 2010
AES instructions? Please, that's from the CIA in the first place. What's needed are OPEN standards like PGP.
skintighJul 21, 2010
The AES algorithm was not developed by the NSA, and it is open. A contest was held and the winner, Rijndael, became AES.
Furthermore, PGP uses public keys to exchange session keys, session keys are then used for block ciphers for the session, block ciphers like AES...
philodygmnJul 21, 2010
My bad. And thanks for the clarification. I'm a lay person doing my best to understand a complex field. I knew of AES only through its adoption by the NSA and didn't figure they wouldn't have gone with something they'd made.
skintighJul 21, 2010
Maybe you were thinking of the previous standard DES. It has a much more shady past and I recall reading it was supposed to be secret before it was leaked, but wikipedia doesn't mention that...
deviousalexJul 21, 2010
@philodygmn - The AES standard is from the NSA true, but the encryption algorithm itself is not. The NSA had a competition to create the algorithm and 2 Belgian mathematicians won.
There is already a standard for this....it's called IPSec. We just need to roll it out. There are some problems with IPSec though depending on how it's used, mainly it gives firewall admins a headache because the TCP header can be encrypted so they can't do port filtering.
memnochxxJul 21, 2010
This account has been closed by the user
culytJul 21, 2010
From what I understand AES is a 'tweaked' version of the original Rijndael.
From what I understand, last time the NSA tweaked an encryption standard they did make it more secure against several at the time unknown attacks.
Also this is the encryption standard they use themselfs, so they will wan't it secure in case Cryptogrophers in China break it. Of course maybe they have their own super secret encryption and leave a deliberate backdoor.
However according to Wikipedia AES does have a limited keysize thought where was Rijndael can use any size. This might just be optimization on the part of the NSA that will wan't things like hardware decoders.
skintighJul 21, 2010
That is correct: the NSA tweeked DES and 30 years later academia invented differential cryptanalysis and it turned out DES was resistant to it, suggesting the NSA had at least a 30 year lead on academia.
I doubt AES is used for highly classified info, but I also doubt there are any backdoors for the reasons you give.
webdesignpro160Oct 26, 2010
Interesting post on encryption technology