Security and Cryptography
 
Forums: » Register « |  User CP |  Games |  Calendar |  Members |  FAQs |  Sitemap |  Support | 
User Name:
Password:
Remember me
Go Back   Dev Shed ForumsSystem AdministrationSecurity and Cryptography
Reload this Page

Crypto Algorithm Question - Passphrase hash length shorter than cipher key

Receive the tools necessary to be the rock star of your field. Our 12-month program teaches you the evolving world of multi-channel marketing as well as the complex issues and opportunities found in the industry.

ASP Free and Iron Speed Designer are giving away $5,500+ in FREE licenses. Iron Speed's RAD CASE toolset can save up to 80% of your coding time. One free license per week, one perpetual license per month!
Download and Activate to enter!
Web development can be a daunting task, even for specialists. There is a lot of information to absorb and a lot of technologies to learn in order to manage a superior website. When trying to learn the ropes, developers need a reliable source to introduce new ideas that can be easily implemented. When working on large projects, even web veterans may run into a technology or an aspect of a technology that they are unfamiliar with.

Learn More!
Download to Enter | Contest Rules
Tutorials | Forums

Reply
Add This Thread To:
  Del.icio.us   Digg   Google   Spurl   Blink   Furl   Simpy   Y! MyWeb 
« Previous Thread | Next Thread »  
Thread Tools Search this Thread Rate Thread Display Modes
 
Unread Dev Shed Forums Sponsor:
  #1  
Old January 7th, 2012, 02:47 PM
murf256 murf256 is offline
Registered User
Dev Shed Newbie (0 - 499 posts)
  
Join Date: Jan 2012
Posts: 1 murf256 User rank is Just a Lowly Private (1 - 20 Reputation Level) 
Time spent in forums: 8 m 44 sec
Reputation Power: 0
Crypto Algorithm Question - Passphrase hash length shorter than cipher key
Hi,

I'm looking to use dm-crypt / cryptsetup (not LUKS) on Linux to encrypt a filesystem on a small loopback file.
The version of cryptsetup I'm using is 1.3.1 which defaults to:

Hash: ripemd160
Cipher: aes-cbc-essiv:sha256, 256 bit key

The question I have is, if the output of the hash is 160 bits and the cipher takes 256, then to make the key, 96 bits must be padded in a (presumably) determinable manner. Does this not weaken the cipher? I know the result is probably still mega secure but why compromise?

Thanks
Reply With Quote
  #2  
Old January 7th, 2012, 10:02 PM
OmegaZero OmegaZero is offline
Contributing User
Dev Shed Novice (500 - 999 posts)
  
Join Date: May 2007
Posts: 637 OmegaZero User rank is Lieutenant General (80000 - 90000 Reputation Level)OmegaZero User rank is Lieutenant General (80000 - 90000 Reputation Level)OmegaZero User rank is Lieutenant General (80000 - 90000 Reputation Level)OmegaZero User rank is Lieutenant General (80000 - 90000 Reputation Level)OmegaZero User rank is Lieutenant General (80000 - 90000 Reputation Level)OmegaZero User rank is Lieutenant General (80000 - 90000 Reputation Level)OmegaZero User rank is Lieutenant General (80000 - 90000 Reputation Level)OmegaZero User rank is Lieutenant General (80000 - 90000 Reputation Level)OmegaZero User rank is Lieutenant General (80000 - 90000 Reputation Level)OmegaZero User rank is Lieutenant General (80000 - 90000 Reputation Level)OmegaZero User rank is Lieutenant General (80000 - 90000 Reputation Level)OmegaZero User rank is Lieutenant General (80000 - 90000 Reputation Level)OmegaZero User rank is Lieutenant General (80000 - 90000 Reputation Level)OmegaZero User rank is Lieutenant General (80000 - 90000 Reputation Level)OmegaZero User rank is Lieutenant General (80000 - 90000 Reputation Level) 
Time spent in forums: 2 Weeks 6 Days 10 h 10 m 13 sec
Reputation Power: 825
There doesn't need to be any padding. For example, the PBKDF2 algorithm from PKCS#5 hashes the pass phrase plus a counter multiple times to produce an arbitrarily long output.
__________________
sub{*{$::{$_}}{CODE}==$_[0]&& print for(%:: )}->(\&Meh);
Reply With Quote
  #3  
Old January 21st, 2012, 04:16 PM
ehmicky ehmicky is offline
Registered User
Dev Shed Newbie (0 - 499 posts)
  
Join Date: Jan 2012
Posts: 3 ehmicky User rank is Just a Lowly Private (1 - 20 Reputation Level) 
Time spent in forums: 1 h 14 m 36 sec
Reputation Power: 0
Hi,
Can't you use SHA256 instead of RIPEMD160 ?
Reply With Quote
Reply

Viewing: Dev Shed ForumsSystem AdministrationSecurity and Cryptography > Crypto Algorithm Question - Passphrase hash length shorter than cipher key

« Previous Thread | Next Thread »

Thread Tools  Search this Thread 
Search this Thread:

Advanced Search
Display Modes  Rate This Thread 
Linear Mode Linear Mode
Rate This Thread:


Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
vB code is On
Smilies are On
[IMG] code is On
HTML code is Off
View Your Warnings | New Posts | Latest News | Latest Threads | Shoutbox
Forum Jump

Forums: » Register « |  User CP |  Games |  Calendar |  Members |  FAQs |  Sitemap |  Support | 
  
 


Powered by: vBulletin Version 3.0.5
Copyright ©2000 - 2012, Jelsoft Enterprises Ltd.

© 2003-2012 by Developer Shed. All rights reserved. DS Cluster 2 - Follow our Sitemap