Follow us on Twitter!
Ideas are far more powerful than guns.
Wednesday, April 23, 2014
Navigation
Home
HellBoundHackers Main:
HellBoundHackers Find:
HellBoundHackers Information:
Learn
Communicate
Submit
Shop
Challenges
HellBoundHackers Exploit:
HellBoundHackers Programming:
HellBoundHackers Think:
HellBoundHackers Track:
HellBoundHackers Patch:
HellBoundHackers Other:
HellBoundHackers Need Help?
Other
Members Online
Total Online: 16
Guests Online: 16
Members Online: 0

Registered Members: 82876
Newest Member: bhl1986
Latest Articles
View Thread

HellBound Hackers | Computer General | Cryptography

Author

AES and Blowfish

breakDance
Member



Posts: 13
Location: Far Away
Joined: 30.03.08
Rank:
Active User
Posted on 13-02-09 06:04
hello...i'm doing some research about AES and Blowfish. the research focus on the level of security that both algorithm perform. from what i know, both of algorithm have never been cracked. but i have to proof that.

the problem is i have no method to prove that. i want to use JTR to crack AES and Blowfish (to show the process)..but seem like impossible.

so..i hope that someone can give me suggestion on how to proof that problem..

thank you...
Author

RE: AES and Blowfish

spyware
Member



Posts: 4192
Location: The Netherlands
Joined: 14.04.07
Rank:
God
Warn Level: 90
Posted on 13-02-09 08:52
Bruteforce methods are tediously slow in case the password is a good one. If you want to mathematically prove that these algorithms are (reasonably) safe, have fun phoning to NSA.

Seriously, they can't expect you to back up these statements with detailed algorithm analysises.

I recommend you apply some bruteforcing, show a nice cost (time) vs. profit (cracked passwords) graph, and apply some basic mathematical stuff. If you're going to do a line-by-line analysis of these algorithms I salute you, and wish you good luck.

Have fun failing your school assignment though.



img507.imageshack.us/img507/3580/spynewsig3il1.png
"The chowner of property." - Zeph
[small]
Widespread intellectual and moral docility may be convenient for leaders in the short term,
but it is suicidal for nations in the long term.
- Carl Sagan
“Since the grid is inescapable, what were the earlier lasers about? Does the corridor have a sense of humor?” - Ebert
[/s
http://bitsofspy.net
Author

RE: AES and Blowfish


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 13-02-09 12:02
I agree with spyware. It is really hard proving that. What "level" of education is it, btw?


Author

RE: AES and Blowfish


Member

Your avatar

Posts:
Location:
Joined: 01.01.70
Rank:
Guest
Posted on 13-02-09 14:47
You have to understand the algorithm then try to think about how it can be reversed and estimate a time for this inverse-algorithm to be done taking into consideration the computer power needed for the operation...
At least that's how I deal with it...
Note that everything is breakable, but saying that an encryption is unbreakable means that you really needs lots of time to break it... So after this long time, the plain-text you will get is unimportant, expired and not valid anymore...




Edited by on 13-02-09 14:48
Author

RE: AES and Blowfish

breakDance
Member



Posts: 13
Location: Far Away
Joined: 30.03.08
Rank:
Active User
Posted on 15-02-09 07:28
hehehe..thank you for replying..

this research is my final year project for degree level. if this research fail..means i can't graduate...hehehe.. my knowledge about cryptography are limited. but i think that cryptography and computer security is very interesting field in computer science. that's why i choose this topic.Smile

i know it hard to prove it...and i'm thinking about using brute force. although it's very tedious..but i can show the process and prove that both algorithm can't be crack. i try to use JTR but it's seem can't use to AES and Blowfish. is there any brute force software that i can use??..

Author

RE: AES and Blowfish

spyware
Member



Posts: 4192
Location: The Netherlands
Joined: 14.04.07
Rank:
God
Warn Level: 90
Posted on 15-02-09 13:27
If you're planning on logging every step of the way you are way better of writing your own software.



img507.imageshack.us/img507/3580/spynewsig3il1.png
"The chowner of property." - Zeph
[small]
Widespread intellectual and moral docility may be convenient for leaders in the short term,
but it is suicidal for nations in the long term.
- Carl Sagan
“Since the grid is inescapable, what were the earlier lasers about? Does the corridor have a sense of humor?” - Ebert
[/s
http://bitsofspy.net