> Date: Mon, 2 Feb 2004 01:01:52 +0000
> From: Dimitrios <sehh@altered.com>
> now, software (like electronics) is breakable, there is no such thing as
> 100% secure encryption. But what we've got is encryption that escalates
> in the time it takes to crack it. Therefore if the encryption takes 6
> months to crack, but the data is about a financial decision that will
> happen within the next month or so, you have succeeded in protecting the
> data since they'll be obsolete by the time they are cracked.
> software encryption (PGP, public/private key types) can guarantee that
> your data may take years to crack, therefore makes them obsolete in most
> cases.
One cannot say that any encryption scheme will take six months. One can at
best say on average how long a series of brute force attacks will take.
And of course, the absolute longest it will take.
After all, they might guess right on the very first try.
Just playing with numbers here... shows that any brute force attempt will
take dozens of years (on average), so I'm sure there's some other way to
get the password. I'd bet a logic analyzer could be used to tap points on
the drive circuit.
Obviously, IBM heard their customers need for something stronger, and
that's why they have a new security chip feature.
Chris
_______________________________________________
Thinkpad mailing list
Thinkpad@stderr.org
http://stderr.org/cgi-bin/mailman/listinfo/thinkpad
Received on Mon Feb 2 11:52:54 2004
This archive was generated by hypermail 2.1.8 : Fri May 26 2006 - 16:02:03 EDT