[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Re: Loop-AES and Twofish on 64-bit CPU

To: linux-crypto@xxxxxxxxxxxx
Subject: Re: Re: Loop-AES and Twofish on 64-bit CPU
From: Peter_22@xxxxxx
Date: Sun, 04 Jun 2006 04:08:58 +0200
In-reply-to: <447B1576.8E989339@users.sourceforge.net>
List-archive: <http://mail.nl.linux.org/linux-crypto/>
List-help: <mailto:ecartis@nl.linux.org?Subject=help>
List-id: <linux-crypto.nl.linux.org>
List-owner: <mailto:ecartis-owner@nl.linux.org>
List-post: <mailto:linux-crypto@nl.linux.org>
List-software: Ecartis version 1.0.0
List-subscribe: <mailto:linux-crypto-request@nl.linux.org?Subject=subscribe>
List-unsubscribe: <mailto:linux-crypto-request@nl.linux.org?Subject=unsubscribe>
References: <20060507213257.GA1238@dantooine> <4536.1147116034@www013.gmx.net> <446067A8.3040501@cbu.uib.no> <Pine.NEB.4.64.0605260211430.8433@vaio.testbed.de> <20060526210805.179940@gmx.net> <4479A00A.2070109@cbu.uib.no> <Pine.NEB.4.64.0605290223080.11643@vaio.testbed.de> <447AB849.4030307@cbu.uib.no> <447B1576.8E989339@users.sourceforge.net>
Sender: linux-crypto-bounce@xxxxxxxxxxxx

> -------- Original-Nachricht --------
> Datum: Mon, 29 May 2006 18:38:30 +0300
> Von: Gisle Sælensminde wrote:
> > A first step could be to describe loop-aes and cryptoloop, like done for
> > the random-device in the paper I linked to.
> 

Fine that you do this analysis of the loop-aes crypto system right now...
But as you already assumed, I am not a crypto analyst. So far I trust in the aes cipher, gpg and Jaris work. As the userbasis is rather small I suppose the FBI didn`t do a code analysis yet. Looks fine, doesn`t it?
Sure, I can`t write C or assembler code. Of course I don`t try writting loop-aes clones. So far I animated Jari to include instructions for using usb-sticks to boot from. Loop-aes can be set up to boot the system with no partition table. So there remains nothing that could tell attackers that you are using loop-aes. What looks crypto analysis like when you don`t know which kind of system you attack? Maybe you assume that loop-aes is used? In this case you still don`t know partitions or offsets. And of course you don`t know how many layers of encryption I used. Maybe I used 4 loops for some part of some disk...

Again, I agree with your concerns about how loop-aes is taylored. But you still missed to give reasons why setting up more than one loop device per partition decreases security. Mixing up things always leads to a higher degree of freedom and this will decrease chances for crypto analysis, too. Right?

Regards,
Peter

-- 

Der GMX SmartSurfer hilft bis zu 70% Ihrer Onlinekosten zu sparen!
      Ideal für Modem und ISDN: http://www.gmx.net/de/go/smartsurfer

-
Linux-crypto:  cryptography in and on the Linux system
Archive:       http://mail.nl.linux.org/linux-crypto/

Prev by Date: thanks for feedback, but once computer is on?
Next by Date: Re: Loop-AES and Twofish on 64-bit CPU
Previous by thread: Re: thanks for feedback, but once computer is on?
Next by thread: Re: Loop-AES and Twofish on 64-bit CPU
Index(es):
- Date
- Thread