Security and Cryptography
 
Forums: » Register « |  User CP |  Games |  Calendar |  Members |  FAQs |  Sitemap |  Support | 
User Name:
Password:
Remember me

The Shed is going Social! Join us on FaceBook and Twitter and chime in on the conversation.

Go Back   Dev Shed ForumsSystem AdministrationSecurity and Cryptography
Reload this Page

Crypto Algorithm Question - Passphrase hash length shorter than cipher key


Reply
Add This Thread To:
  Del.icio.us   Digg   Google   Spurl   Blink   Furl   Simpy   Y! MyWeb 
« Previous Thread | Next Thread »  
Thread Tools Search this Thread Rate Thread Display Modes
 
Unread Dev Shed Forums Sponsor:
  #1  
Old January 7th, 2012, 02:47 PM
murf256 murf256 is offline
Registered User
Dev Shed Newbie (0 - 499 posts)
  
Join Date: Jan 2012
Posts: 1 murf256 User rank is Just a Lowly Private (1 - 20 Reputation Level) 
Time spent in forums: 8 m 44 sec
Reputation Power: 0
Crypto Algorithm Question - Passphrase hash length shorter than cipher key
Hi,

I'm looking to use dm-crypt / cryptsetup (not LUKS) on Linux to encrypt a filesystem on a small loopback file.
The version of cryptsetup I'm using is 1.3.1 which defaults to:

Hash: ripemd160
Cipher: aes-cbc-essiv:sha256, 256 bit key

The question I have is, if the output of the hash is 160 bits and the cipher takes 256, then to make the key, 96 bits must be padded in a (presumably) determinable manner. Does this not weaken the cipher? I know the result is probably still mega secure but why compromise?

Thanks
Reply With Quote
  #2  
Old January 7th, 2012, 10:02 PM
OmegaZero OmegaZero is offline
Contributing User
Dev Shed Novice (500 - 999 posts)
  
Join Date: May 2007
Posts: 737 OmegaZero User rank is General (90000 - 100000 Reputation Level)OmegaZero User rank is General (90000 - 100000 Reputation Level)OmegaZero User rank is General (90000 - 100000 Reputation Level)OmegaZero User rank is General (90000 - 100000 Reputation Level)OmegaZero User rank is General (90000 - 100000 Reputation Level)OmegaZero User rank is General (90000 - 100000 Reputation Level)OmegaZero User rank is General (90000 - 100000 Reputation Level)OmegaZero User rank is General (90000 - 100000 Reputation Level)OmegaZero User rank is General (90000 - 100000 Reputation Level)OmegaZero User rank is General (90000 - 100000 Reputation Level)OmegaZero User rank is General (90000 - 100000 Reputation Level)OmegaZero User rank is General (90000 - 100000 Reputation Level)OmegaZero User rank is General (90000 - 100000 Reputation Level)OmegaZero User rank is General (90000 - 100000 Reputation Level)OmegaZero User rank is General (90000 - 100000 Reputation Level)OmegaZero User rank is General (90000 - 100000 Reputation Level) 
Time spent in forums: 3 Weeks 4 Days 22 h 50 m 32 sec
Reputation Power: 928
There doesn't need to be any padding. For example, the PBKDF2 algorithm from PKCS#5 hashes the pass phrase plus a counter multiple times to produce an arbitrarily long output.
__________________
sub{*{$::{$_}}{CODE}==$_[0]&& print for(%:: )}->(\&Meh);
Reply With Quote
  #3  
Old January 21st, 2012, 04:16 PM
ehmicky ehmicky is offline
Registered User
Dev Shed Newbie (0 - 499 posts)
  
Join Date: Jan 2012
Posts: 3 ehmicky User rank is Just a Lowly Private (1 - 20 Reputation Level) 
Time spent in forums: 1 h 14 m 36 sec
Reputation Power: 0
Hi,
Can't you use SHA256 instead of RIPEMD160 ?
Reply With Quote
Reply

Viewing: Dev Shed ForumsSystem AdministrationSecurity and Cryptography > Crypto Algorithm Question - Passphrase hash length shorter than cipher key

« Previous Thread | Next Thread »

Developer Shed Advertisers and Affiliates



Thread Tools  Search this Thread 
Search this Thread:

Advanced Search
Display Modes  Rate This Thread 
Linear Mode Linear Mode
Rate This Thread:


Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
vB code is On
Smilies are On
[IMG] code is On
HTML code is Off
View Your Warnings | New Posts | Latest News | Latest Threads | Shoutbox
Forum Jump

Forums: » Register « |  User CP |  Games |  Calendar |  Members |  FAQs |  Sitemap |  Support | 
  
 


Powered by: vBulletin Version 3.0.5
Copyright ©2000 - 2013, Jelsoft Enterprises Ltd.

© 2003-2013 by Developer Shed. All rights reserved. DS Cluster - Follow our Sitemap