[nSLUG] Netscape

Stephen Gregory nslug at kernelpanic.ca
Tue Jan 20 09:56:59 AST 2009


On Tue, Jan 20, 2009 at 12:16:09AM -0400, Mike Spencer wrote:
> 
> Stephen Gregory <nslug at kernelpanic.ca> wrote:
> 
> > Encryption often looks easy but it is actually a hard problem. Using
> > the algorithms is trivial. Using the algorithms correctly and
> > securely is considerably harder[1].
> 
> BTW, Stephen, you indicated a footnote with "[1]" but then omitted to
> append the footnote itself.

bother. It was one of those days.

[1] one of the best examples of encryption that didn't work out is
WEP. The original encryption protocol used in 802.11 (Wifi). The
protocol uses the RC4 encryption algorithm. Despite the misinformation
out there RC4 is not a terrible algorithm. There are weaknesses, but
these can be worked around. The problem with WEP is that these
weaknesses were not properly taken into account. The WEP designers
also made some niave assumptions about packet frequency and key
reuse. WEP is also missing a proper keying protocol.


-- 
sg



More information about the nSLUG mailing list