Security Basics mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Crypto Question

From: Wu Fei Liang <wu_fei_liang () cms ac>
Date: Fri, 7 Nov 2003 20:10:41 +0100
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Thursday 06 November 2003 23:21, McGill, Lachlan wrote:

Am I right in assuming that an encrypted file/email is only as secure as
the passphrase used for the private key? i.e. If i use the passphrase
'password' then does it become irrelevant what key size I use to encrypt
the data?


The length of the key does matter. The longer the more secure. The passphrase 
is only supposed to protect the private key. For example: Someone has stolen 
your private key which is protected by a passphrase. He wouldn't be able to 
decrypt your emails unless he can crack the passphrase.

- -- 

- --------------------------------------------------------------
WU Fei Liang                         Computer & Media Security
                                University of Applied Sciences
                                       4232 Hagenberg, Austria

[ Mail ]                                   wu_fei_liang () cms ac

[ Public-Key ]
http://pgp.mit.edu:11371/pks/lookup?search=0xC5633638&op=index
- --------------------------------------------------------------
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.3 (GNU/Linux)

iD8DBQE/q+4xuoi2rcVjNjgRAhvIAJ9ImG4r2Nl0pE4Fi+gcypLFDuwzKwCeKHGD
pmZk4Pd2c0plWZLak9DNuLw=
=0TXF
-----END PGP SIGNATURE-----


---------------------------------------------------------------------------
Forum Systems PRESIDIO: PGP / XML GATEWAY APPLIANCE
The Presidio integrates PGP data encryption and XML Web Services security to
simplify the management and deployment of PGP and reduce overall PGP costs
by up to 80%.
FREE WHITEPAPER & 30 Day Trial -
http://www.securityfocus.com/sponsor/ForumSystems_security-basics_031027
----------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: