User Tag List

Page 1 of 2 1 2 LastLast
Results 1 to 10 of 17

Thread: Any plans for AES 256?

  1. #1
    No Products Registered

    Join Date
    Aug 2007
    Posts
    69
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)

    Any plans for AES 256?

    I currently use the AES Fusion object, and I find it works very well. However there are those who question the use of the 128-bit algorithm since the industry standard is now AES 256 Rijndael, which as far as I know has yet to be defeated.

    Are there any plans for an object using this algorithm?

  2. #2
    Clicker Fusion 2.5 DeveloperAndroid Export ModuleHTML5 Export ModuleSWF Export ModuleInstall Creator ProPatch Maker
    Fusion 2.5 (Steam)Fusion 2.5 Developer (Steam)Fusion 2.5+ DLC (Steam)Android Export Module (Steam)HTML5 Export Module (Steam)iOS Export Module (Steam)Universal Windows Platform Export Module (Steam)
    DJFuego's Avatar
    Join Date
    Jul 2006
    Location
    UK
    Posts
    1,410
    Mentioned
    4 Post(s)
    Tagged
    0 Thread(s)

    Re: Any plans for AES 256?

    I second this as it's stronger.

  3. #3
    Clicker Multimedia Fusion 2 Developer

    Join Date
    Jun 2006
    Location
    Darlington, UK
    Posts
    3,298
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)

    Re: Any plans for AES 256?

    Actually, there have been various cryptographic breaks against AES 192/256, and against reduced-round versions of all of them, but no breaks that I know of against full AES 128.

  4. #4
    No Products Registered

    Join Date
    Aug 2007
    Posts
    69
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)

    Re: Any plans for AES 256?

    Surely those breaks were timing attacks or other exploits requiring code execution privileges on the machine performing the encryption, and not attacks on the ciphertext itself. Unless there's some error in the implementation, the 256-bit key will yield a stronger ciphertext.

    I think that there's also a common tactic in use where the hash from a passphrase is used as the encryption key, which would weaken the cipher because the hash is made up of fewer character types (SHA1 is only letters and numbers). I'm not a cryptography expert by any means, but I think a longer key would be good in these cases.

  5. #5
    Clicker Multimedia Fusion 2 DeveloperSWF Export Module

    Join Date
    Aug 2006
    Posts
    2,335
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)

    Re: Any plans for AES 256?

    +1 vote

    This would be a good update for the AES Fusion object.

  6. #6
    Clicker Multimedia Fusion 2 Developer

    Join Date
    Jun 2006
    Location
    Darlington, UK
    Posts
    3,298
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)

    Re: Any plans for AES 256?

    Quote Originally Posted by Richard_Pikk
    Surely those breaks were timing attacks or other exploits requiring code execution privileges on the machine performing the encryption, and not attacks on the ciphertext itself. Unless there's some error in the implementation, the 256-bit key will yield a stronger ciphertext.
    Nope, 'twas an attack on the cypher itself. See: http://www.springerlink.com/content/e300837u42750670/
    Note that it's still far too slow of an attack to be practical, but it's still an attack, and on AES 256, not on AES 128.

    Quote Originally Posted by Richard_Pikk
    I think that there's also a common tactic in use where the hash from a passphrase is used as the encryption key, which would weaken the cipher because the hash is made up of fewer character types (SHA1 is only letters and numbers). I'm not a cryptography expert by any means, but I think a longer key would be good in these cases.
    You misunderstand, the hash isn't only letters and numbers, the hash is raw binary, the numbers are just a human-readable hexadecimal representation of it. It's entirely possible people are stupid enough to use the hex version as the key, but it's not right.

  7. #7
    No Products Registered

    Join Date
    Aug 2007
    Posts
    69
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)

    Re: Any plans for AES 256?

    Ah, okay. Not having read the paper, does it imply that their attack cannot work for some reason against AES 128?

  8. #8
    Clicker Multimedia Fusion 2 Developer

    Join Date
    Jun 2006
    Location
    Darlington, UK
    Posts
    3,298
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)

    Re: Any plans for AES 256?

    Honestly, I don't know. It specifically concentrates on AES 256, making no mention of AES 128. I know that there are differences in the algorithms other than the key size.

  9. #9
    No Products Registered

    Join Date
    Aug 2007
    Posts
    69
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)

    Re: Any plans for AES 256?

    On the topic of hashes for keys, do you see any method of doing this in MMF2 using the RAW output?

  10. #10
    Clicker Multimedia Fusion 2 Developer

    Join Date
    Jun 2006
    Location
    Darlington, UK
    Posts
    3,298
    Mentioned
    0 Post(s)
    Tagged
    0 Thread(s)

    Re: Any plans for AES 256?

    I'm not sure you really gain anything by hashing the key before using it, the entropy should be about the same...

    The only case I know of where people do that is in making WEP keys for old wifi networks, as WEP required an exactly 40-bit key, which would be only 5 characters.

Page 1 of 2 1 2 LastLast

Similar Threads

  1. CT's plans for sub-apps?
    By MJK in forum Multimedia Fusion 2 - Technical Support
    Replies: 7
    Last Post: 28th November 2013, 11:16 PM
  2. Gestion Plans TGF MMF
    By SpringUp in forum File Archive
    Replies: 1
    Last Post: 7th October 2009, 05:24 AM
  3. Plans for Fullscreen?
    By BrandonC in forum Hardware Accelerated Runtime
    Replies: 23
    Last Post: 21st May 2008, 06:24 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •