Re: [Fed-Talk] Lion File Vault encryption
Re: [Fed-Talk] Lion File Vault encryption
- Subject: Re: [Fed-Talk] Lion File Vault encryption
- From: "Blumenthal, Uri - 0668 - MITLL" <email@hidden>
- Date: Thu, 07 Jul 2011 12:33:13 -0400
- Acceptlanguage: en-US
- Thread-topic: [Fed-Talk] Lion File Vault encryption
AES-128 has not been broken, and is still approved to protect Classified information up to SECRET. If you crack it - don't forget to let NSA know. :)
AES-256 is still approved to protect up to TOP SECRET (there were some attacks against AES-256, but they are not practical in any sense).
Original FileVault (or as some hackers call it "VileFault") is another story. Let's see if Lion implements it any better. :)
--
_______________________________________________
Uri Blumenthal Voice: (781) 981-1638
Cyber Systems and Technology Fax: (781) 981-7687
MIT Lincoln Laboratory Cell: (339) 223-5363
244 Wood Street Email: <email@hidden>
Lexington, MA 02420-9185
Web: http://www.ll.mit.edu/CST/
On Jul 7, 2011, at 12:14 , Reese, Brian J Mr CTR DoD DMA wrote:
> Filevault in Snow Leopard also uses AES-128:
>
> http://docs.info.apple.com/article.html?path=Mac/10.6/en/8727.html
>
> If there was a vulnerability in older versions of Filevault, it was due to a
> vulnerability in Apple's implementation, not AES-128 itself. I believe
> AES-128 is still relatively safe.
>
>
> On 7/7/11 11:57 AM, "Pike, Michael (IHS/HQ)" <email@hidden> wrote:
>
>> Call me dumb, but isn't 128 less secure than the current file vault, and
>> didn't someone crack 128?
>>
>> On Jul 6, 2011, at 10:25 PM, John Vanderau wrote:
>>
>> Has anyone found out anything about the level of encryption afforded by Lion's
>> File Vault's FDE? I am concerned that if it's not AES-256, then nothing will
>> have been gained by the federal user as anything less than AES-256 does not
>> meet the minimum standards for acceptable encryption for federal users. But I
>> can't find out anything about what level of encryption Lion File Vault FDE
>> will be.
>> _______________________________________________
>> Do not post admin requests to the list. They will be ignored.
>> Fed-talk mailing list
>> (email@hidden<mailto:email@hidden>)
>> Help/Unsubscribe/Update your Subscription:
>>
>> This email sent to email@hidden
>>
>> _______________________________________________
>> Do not post admin requests to the list. They will be ignored.
>> Fed-talk mailing list (email@hidden)
>> Help/Unsubscribe/Update your Subscription:
>>
>> This email sent to email@hidden
>
> _______________________________________________
> Do not post admin requests to the list. They will be ignored.
> Fed-talk mailing list (email@hidden)
> Help/Unsubscribe/Update your Subscription:
>
> This email sent to email@hidden
Attachment:
smime.p7s
Description: S/MIME cryptographic signature
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden