|
Firewall Wizards
mailing list archives
Re: R: strong encryption for Europeans
From: Bennett Todd <bet () rahul net>
Date: Tue, 25 Nov 1997 06:13:27 -0800
1997-11-25-11:29:08 Arjo Mukherjee:
Even though the VPNs are using shorter length keys than some may
consider SECURE (eg 40 instead of 128), some of the products are
actually exchanging modified keys rather frequently (say in the
ballpark of tens of minutes). Hence, it may not be that easy to break.
In other words, the keys are not kept constant, thus it makes it a bit
harder to crack.
That certainly buys you a little extra protection against a successful
and sustained session hijack, but it does nothing useful for protecting
the secrecy of a logged session; since breaking 40-bit keys takes only
hours, the hypothetical intruder can discover what you sent and received
reasonably quickly. And it it takes hours today it'll take minutes Real
Soon Now (tm).
-Bennett
 By Date 
By Thread
Current thread:
Re: R: strong encryption for Europeans Arjo Mukherjee (Nov 25)
- Re: R: strong encryption for Europeans Bennett Todd (Nov 25)
Re: R: strong encryption for Europeans Ted Doty (Nov 25)
Re: R: strong encryption for Europeans Chris Lonvick (Nov 24)
| 
Intro
