Encryption Algorithms - [b]Second Request[/b] (OpenInsight Specific)
At 06 FEB 2001 12:17:12PM [url=http://www.sprezzatura.com]The Sprezzatura Group[/url] wrote:
A customer wishes to know the encryption algorithm used in OpenInsight($RTP90). For instance, is it LOKI91, LOKI97, BLOWFISH, TEA, SAFER, FEAL and so forth.
This information is needed to prove the cipher is strong enough for their requirements.
Thank you.
World Leaders in all things RevSoft
At 06 FEB 2001 06:59PM Scott, LMS wrote:
Hi Sprezz
Have you tried Mike directly. I would hazard a wild guess (to borrow a phrase) that most of us would not have a clue what the encryption rating is for OI.
My theory is no hacker could possibly be bothered trying to figure it out - it just doesn't have the appeal of Bill's products, but I could be wrong.
Scott
At 07 FEB 2001 05:46AM [url=http://www.sprezzatura.com" onMouseOver=window.status=Click here to visit our web site?';return(true)]The Sprezzatura Group[/url] wrote:
We have contacted Revelation directly by email about this in case it is seen as a commercially sensitive issue. Our client is very concerned about security. Fortunately we're used to this. One of our clients had a 4096 bit encryption algorithm…. 128 bit is for wusses
World Leaders in all things RevSoft
At 07 FEB 2001 09:48AM Mike Ruane wrote:
Replied via Email.
At 07 FEB 2001 06:14PM Scott, LMS wrote:
Hi Sprezz
4096 yikes. You heard what they tried to do to the author of PGP?
I always thought cyphers were cool until I found out that various Govts view them with the same lack of affection as portable nukes in the community.
But after my laptop got stolen, I want my own cypher.
You think Mike could reveal the "rating" without compromising the algorithm? Eg something like
X2001 - suitable for Defence applications using year 2001 USA standards
C2001 - suitable for corporate/commericial applications using…
P2001=suitable for personal use…
I remember vaguely that there is a standard like this, but not the details. Probably just as well.
Scott
At 07 FEB 2001 06:20PM [url=http://www.sprezzatura.com" onMouseOver=window.status=Click here to visit our web site?';return(true)]The Sprezzatura Group[/url] wrote:
Well actually this was a government department. We've had the pleasure of working for government in the UK, US and Oz!
Damn… we'll have to kill you now.
World Leaders in all things RevSoft
At 07 FEB 2001 07:11PM Scott, LMS wrote:
Hi Sprezz
Ah, I could tell you some stories but I won't. Used to work in Canberra. That should be enough. Perhaps the reason I am still here is because of who I know, not what I know; or maybe what I know about who I know.
And I can always use the Alan Bond Defence.
Scott, LMS
I forget; I don't recall; That is not how I remember it.
At 08 FEB 2001 12:33PM Tom Savell wrote:
We actually use a sentinel key from Rainbow technologies with our application in place of $RTP90. It has EXTREMELY high level of encryption. Rainbow supplies the DLL which can readily be integrated into OI, (as well as the details on type of encryption algorithms used). You might want to investigate this approach.
Tom
At 08 FEB 2001 03:05PM [url=http://www.sprezzatura.com" onMouseOver=window.status=Click here to visit our web site?';return(true)]The Sprezzatura Group[/url] wrote:
Thanks Tom - we're pretty much constrained by the client on this one -they need incredible security levels so we've thrown this back to them!
We appreciate the pointer though and will bear it in mind if the client decides that RTP90 doesn't hack it .
World Leaders in all things RevSoft