From owner-freebsd-security  Thu Aug 29  7: 6:33 2002
Delivered-To: freebsd-security@freebsd.org
Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 2680637B400
	for <freebsd-security@FreeBSD.ORG>; Thu, 29 Aug 2002 07:06:29 -0700 (PDT)
Received: from blade-runner.mit.edu (BLADE-RUNNER.MIT.EDU [18.78.0.22])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 7CB3E43E75
	for <freebsd-security@FreeBSD.ORG>; Thu, 29 Aug 2002 07:06:28 -0700 (PDT)
	(envelope-from petr@blade-runner.mit.edu)
Received: from blade-runner.mit.edu (localhost [127.0.0.1])
	by blade-runner.mit.edu (8.12.3/8.12.3) with ESMTP id g7TEASnY030196;
	Thu, 29 Aug 2002 10:10:28 -0400 (EDT)
	(envelope-from petr@blade-runner.mit.edu)
Received: (from petr@localhost)
	by blade-runner.mit.edu (8.12.3/8.12.3/Submit) id g7TEAShK030193;
	Thu, 29 Aug 2002 10:10:28 -0400 (EDT)
To: "Perry E. Metzger" <perry@piermont.com>
Cc: "Karsten W. Rohrbach" <karsten@rohrbach.de>, mipam@ibb.net,
	Matthias Buelow <mkb@mukappabeta.de>,
	Stefan =?iso-8859-1?q?Kr=FCger?= <skrueger@europe.com>,
	freebsd-security@FreeBSD.ORG, tech-security@netbsd.org,
	misc@openbsd.org
Subject: Re: 1024 bit key considered insecure (sshd)
References: <20020828200748.90964.qmail@mail.com>
	<3D6D3953.6090005@mukappabeta.de> <20020828224330.GE249@localhost>
	<87k7mamc2s.fsf@snark.piermont.com>
	<20020829091232.A53344@mail.webmonster.de>
	<87bs7ln66u.fsf@snark.piermont.com>
From: Petr Swedock <petr@blade-runner.mit.edu>
Date: 29 Aug 2002 10:10:28 -0400
In-Reply-To: <87bs7ln66u.fsf@snark.piermont.com>
Message-ID: <86hehdbvsb.fsf@blade-runner.mit.edu>
Lines: 22
User-Agent: Gnus/5.0808 (Gnus v5.8.8) Emacs/20.7
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-security.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-security>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-security>
X-Loop: FreeBSD.org

"Perry E. Metzger" <perry@piermont.com> writes:

> "Karsten W. Rohrbach" <karsten@rohrbach.de> writes:
>
> I would have thought spending at least hundreds of millions off
> dollars and (as importantly) at least months of time would have been
> considered "unattractive" enough to encourage other methods of getting
> at your data like breaking in to your physical location. Silly me. I
> guess I missed the concept behind crypto.

The concept behind crypto is to confuse, scramble and obfuscate. When
it was first designed for and employed in computers the existing 
mathematical models, computer muscle and modes of analysis were
thought to assure unbreakability.  Now the use has morphed into
a race condition where present mathematical models and future 
computer muscle, coupled with existing modes of analysis are
thought to assure breakability.

Peace,

Petr


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message