Learn how easy it is to sync an existing GitHub or Google Code repo to a SourceForge project! See Demo

Close

#14 Stronger Encryption

closed
Len Sassaman
None
1
2006-09-17
2006-09-16
MATT_ONE
No

Isn’t it about time remailers moved from the old SHA1
& MD5 to the newer and more secure RIPEMD-160,
SHA256, SHA384, SHA512, and Whirlpool hashes?

As for the use of CAST5, IDEA, and 3DES algorithms,
although they still haven't been broken (?), with
advances in crypto-analysis; 'for how much longer'?
It is about time we moved to the newer generation
Twofish, AES256, or the more secure, (belts and
braces approach to algorithm design) Serpent?

Or even use all three Twofish, AES256, and Serpent
simultaneously like the OTFE program Truecrypt?

Stronger keys than 2048bit the most common, although
some still use 1024 bit keys. How about 4096+ and
not just for the old RSA key design?

It is about time the few remailer operators still
using the old PGP 2.X.X, moved to GnuPGP, or at least
the CKT builds of PGP 2.X.X?

Discussion

  • Len Sassaman
    Len Sassaman
    2006-09-17

    Logged In: YES
    user_id=29569

    No. There is a multi-year plan in place to transition from Type II to Type III
    remailers. Changing the encryption primitives used in Type II would weaken
    security of the system due to the anonymity set fragmentation, and would not
    address a problem that exists in reality.

    For more background on these complicated issues, see http://freehaven.net/
    anonbib/

     
  • Len Sassaman
    Len Sassaman
    2006-09-17

    • priority: 5 --> 1
    • assigned_to: nobody --> rabbi
    • status: open --> closed