Free Republic
Browse · Search 		News/Activism
Topics · Post Article

To: Golden Eagle
Linux is a member of the "open source" family, and because of that, the entire interworkings of it's internal mechanisms is freely published on websites around the world. That makes for a very poor security model, and the secrecy of anything, especially as needed in Government or DoD environments, is depending on how "classified" you keep the material.

1st of all, that ain't exactly correct. For example, the algorthim for Rijndael is published publically, and you can download source code versions to create your own implementation. Yet Rijndael (usually pronounced "Rhine Dahl" or "Rain Doll" is now the official Advanced Encryption Standard of the United States, having replaced the previous standard, DES or triple-DES.

Rijndael uses a 256 bit key, whereas DES used a 168 bit key. Go here for a C++ implementation of Rijndael. Go here for a bunch of Rijndael info, including other programming language implementations.

You are basically making an argument for "security by obscurity". I won't say that the argument is invalid, but I will say that many security experts do not agree with it. Now you may disagree with them but your opinion is not a consensus opinion even in the security field.

153 posted on 07/26/2003 3:39:59 PM PDT by dark_lord (The Statue of Liberty now holds a baseball bat and she's yelling 'You want a piece of me?')
[ Post Reply | Private Reply | To 26 | View Replies ]

To: dark_lord
You are basically making an argument for "security by obscurity".

Basically, because it is an important element of security. Just not in total, because nothing is ever completely "obscure".

154 posted on 07/26/2003 4:13:08 PM PDT by Golden Eagle
[ Post Reply | Private Reply | To 153 | View Replies ]

Free Republic
Browse · Search 		News/Activism
Topics · Post Article

FreeRepublic, LLC, PO BOX 9771, FRESNO, CA 93794
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson