Re: [Fed-Talk] File Vault and AES128
Re: [Fed-Talk] File Vault and AES128
- Subject: Re: [Fed-Talk] File Vault and AES128
- From: Michael Pike <email@hidden>
- Date: Thu, 30 Jun 2005 12:08:33 -0600
I did read that (by the way Lewis, is was great meeting you at WWDC!).
I just wanted a bottom line answer (if you can):
Is AES128 secure enough for the NSA and CIA? Or do they use
something else?
mike
On Jun 30, 2005, at 11:28 AM, Lewis Bean wrote:
From Apple's website..
AES gives you 3.4 x 1038 possible 128-bit keys. In comparison, the
Digital
Encryption Standard (DES) keys are a mere 56 bits long, which means
there
are approximately 7.2 x 1016 possible DES keys. Thus, there are on
the order
of 1021 times more possible AES 128-bit keys than DES 56-bit keys.
Assuming
that one could build a machine that could recover a DES key in a
second, it
would take that machine approximately 149 trillion years to crack a
128-bit
AES key.
(To put that into perspective, the universe is believed to be less
than 20
billion years old.)
Lewis Bean
Apple Technical Sales Consultant
888-205-2387
GTSI.com
On 6/30/05 1:01 PM, "Michael Pike" <email@hidden> wrote:
How secure is it? 128bit does not sound that secure to me,
especially when email encryption goes up to 2048 bit.
If I have files of a top secret nature, is AES128 uncrackable? I do
not worry about my passphrase for logging in (and I am told that is
the password used to encrypt for filevault - it's very cryptic. I
also have just as cryptic of a passphrase for the master password),
but is there a way to crack what sounds like to be a very small
cipher (AES128?)
The reason I ask... would it be safer to use something like
Blowfish? I know AES is the standard for US encryption, but that
does not necessarily mean is the best available.
thanks,
mike
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden
Attachment:
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden