Free Republic
Browse · Search 		General/Chat
Topics · Post Article

To: ShadowAce
They just made the keyspace two bits smaller. That in itself is not such a big deal; however, once such a flaw has been found in a cipher, others, more serious ones usually follow in short order. So, we better get ready to find a decent replacement.
9 posted on 08/22/2011 5:44:53 AM PDT by cartan
[ Post Reply | Private Reply | To 1 | View Replies ]

To: cartan

Even if the algorithm is good, there may still be flaws in the implementation. The bid example this year was crypt_blowfish - the popular open source library used in implementation for the last 13 years turns out to have been only using every 4th character of a given password when creating hashes of said password. The fix turned out to be changing a simple cast of a char (which is default a signed integer) to an unsigned integer.

The flaw was out there for 13 years and nobody noticed!


14 posted on 08/22/2011 5:59:50 AM PDT by glorgau
[ Post Reply | Private Reply | To 9 | View Replies ]

Free Republic
Browse · Search 		General/Chat
Topics · Post Article

FreeRepublic, LLC, PO BOX 9771, FRESNO, CA 93794
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson