Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Computational complexity
Special Forums Cybersecurity Computational complexity Post 302377646 by jim mcnamara on Friday 4th of December 2009 02:22:07 PM
Old 12-04-2009
I would read this by Bruce Schnier:
Schneier on Security: New Attack on AES

His real point:
large computational complexities - even though reduced by cracks, still mean that cracking a given given algorithm is way, way beyond practical.

People who don't get what encryption is really used for are going to assume
that greater complexity == better protection. Security trancends computational complexity - people and procedures are the weakest points, not decent algorithms. (From one of Schnier's books).

So "strength" beyond a reasonable limit is pointless. I know this is not what you asked, but implied.
 

6 More Discussions You Might Find Interesting

1. UNIX for Advanced & Expert Users

Need Help installing a Computational Tool Kit

Hi ! I have been trying to install IMSL Computational Tool Kit on a server. It is a Lunix Redhat V.4 with Intel pentium d processor and Intel fortran compiler 8.1 and the type of command shell we run is bash. I dont know if the problem is with the Installation or the Lunix system. I have... (1 Reply)
Discussion started by: dsmv
1 Replies

2. Emergency UNIX and Linux Support

Appending the contents of two files in computational manner

Hi, I have two files say file 1 file 2 File1 1 2 4 5 File 2 asdf adf How to get the ouput something like asdf1 adf1 asdf2 adf2 asdf4 adf4 asdf5 (5 Replies)
Discussion started by: ecearund
5 Replies

3. AIX

topas - computational memory 95% : Any Impact?

Hello Gurus, I am using AIX 5 and on running topas command. I can see the computational memory is 93.3% with Swap Paging memory at 2.2%. Could you please advise if there is any impact by the growth of computational memory? Below is the stat: MEMORY Real,MB 22528 % Comp 93.3 %... (12 Replies)
Discussion started by: panchpan
12 Replies

4. UNIX for Advanced & Expert Users

Passphrase Complexity

Hi, How to configure minimum passphrase (Not UNIX password) requirements on any UNIX box? Passphrase - the one user enteres while generating pub/pvt keys using ssh-keygen. Thanks! Reddy (3 Replies)
Discussion started by: reddyr
3 Replies

5. Shell Programming and Scripting

Capturing computational/non computational memory from topas

Hi Friends, How to capture the value of %Comp and %Noncomp values from AIX using topas command. I tried lot, but i cannot capture the value. (4 Replies)
Discussion started by: Nowshath
4 Replies

6. Shell Programming and Scripting

Shell script for %computational memory & % non computational memory

Dear, How to calculate %computational memory and %non computational memory from AIX server. What command used to find out %computational memory and % non computational memory except topas. Regards Nowshath (1 Reply)
Discussion started by: Nowshath
1 Replies

LEARN ABOUT SUNOS

esp

ipsecesp(7P)							     Protocols							      ipsecesp(7P)

NAME

       ipsecesp, ESP - IPsec Encapsulating Security Payload

SYNOPSIS

       drv/ipsecesp

DESCRIPTION

       The  ipsecesp  module  provides	confidentiality, integrity, authentication, and partial sequence integrity (replay protection) to IP data-
       grams. The encapsulating security payload (ESP) encapsulates its data, enabling it to protect data that follows in the  datagram.  For  TCP
       packets,  ESP  encapsulates  the  TCP header and its data only.	If the packet is an IP in IP datagram, ESP protects the inner IP datagram.
       Per-socket policy allows "self-encapsulation" so ESP can encapsulate IP options when necessary. See ipsec(7P).

       Unlike the authentication header (AH), ESP allows multiple varieties of datagram protection. (Using a single datagram protection  form  can
       expose vulnerabilities.) For example, only ESP can be used to provide confidentiality. But protecting confidentiality alone exposes vulner-
       abilities in both replay attacks and cut-and-paste attacks. Similarly, if ESP protects only integrity and does not  fully  protect  against
       eavesdropping, it may provide weaker protection than AH. See ipsecah(7P).

   ESP Device
       ESP is implemented as a module that is auto-pushed on top of IP. Use the /dev/ipsecesp entry to tune ESP with ndd(1M).

   Algorithms
       ESPuses	encryption and authentication algorithms. Authentication algorithms include HMAC-MD5 and HMAC-SHA-1. Encryption algorithms include
       DES, Triple-DES, Blowfish and AES. Each authentication and encryption algorithm contain key size and key format properties. You can  obtain
       a  list of authentication and encryption algorithms and their properties by using the ipsecalgs(1M) command. You can also use the functions
       described in the getipsecalgbyname(3NSL) man page to retrieve the properties of algorithms. Because of export laws in  the  United  States,
       not all encryption algorithms are available outside of the United States.

   Security Considerations
       ESP without authentication exposes vulnerabilities to cut-and-paste cryptographic attacks as well as eavesdropping attacks. Like AH, ESP is
       vulnerable to eavesdropping when used without confidentiality.

ATTRIBUTES

       See attributes(5) for descriptions of the following attributes:

       +-----------------------------+-----------------------------+
       |      ATTRIBUTE TYPE	     |	    ATTRIBUTE VALUE	   |
       +-----------------------------+-----------------------------+
       |Availability		     |SUNWcsr (32-bit)		   |
       +-----------------------------+-----------------------------+
       |Interface Stability	     |Evolving			   |
       +-----------------------------+-----------------------------+

SEE ALSO

       ipsecalgs(1M), ipsecconf(1M), ndd(1M), attributes(5), getipsecalgbyname(3NSL), ip(7P), ipsec(7P), ipsecah(7P)

       Kent, S. and Atkinson, R.RFC 2406, IP Encapsulating Security Payload (ESP), The Internet Society, 1998.

SunOS 5.10							    18 May 2003 						      ipsecesp(7P)
All times are GMT -4. The time now is 09:40 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy