Firewall Wizards mailing list archives
Re: R: strong encryption for Europeans
From: Bennett Todd <bet () rahul net>
Date: Tue, 25 Nov 1997 06:13:27 -0800
1997-11-25-11:29:08 Arjo Mukherjee:
Even though the VPNs are using shorter length keys than some may consider SECURE (eg 40 instead of 128), some of the products are actually exchanging modified keys rather frequently (say in the ballpark of tens of minutes). Hence, it may not be that easy to break. In other words, the keys are not kept constant, thus it makes it a bit harder to crack.
That certainly buys you a little extra protection against a successful and sustained session hijack, but it does nothing useful for protecting the secrecy of a logged session; since breaking 40-bit keys takes only hours, the hypothetical intruder can discover what you sent and received reasonably quickly. And it it takes hours today it'll take minutes Real Soon Now (tm). -Bennett
Current thread:
- R: strong encryption for Europeans Franco RUGGIERI (Nov 24)
- Re: R: strong encryption for Europeans Andreas Siegert (Nov 25)
- Re: R: strong encryption for Europeans Adam Shostack (Nov 25)
- Re: R: strong encryption for Europeans Perry E. Metzger (Nov 25)
- Re: R: strong encryption for Europeans Adam Shostack (Nov 25)
- Re: R: strong encryption for Europeans Adam Shostack (Nov 25)
- Re: R: strong encryption for Europeans Martin W Freiss (Nov 25)
- Re: R: strong encryption for Europeans Andreas Siegert (Nov 25)
- Re: R: strong encryption for Europeans Arjo Mukherjee (Nov 25)
- Re: R: strong encryption for Europeans Bennett Todd (Nov 25)
- Re: R: strong encryption for Europeans Ted Doty (Nov 25)
- <Possible follow-ups>
- Re: R: strong encryption for Europeans Chris Lonvick (Nov 24)
- Re: R: strong encryption for Europeans lum (Nov 25)
- Re: R: strong encryption for Europeans Bennett Todd (Nov 25)
- Re: R: strong encryption for Europeans lum (Nov 25)