[106496] in cryptography@c2.net mail archive


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: Password vs data entropy

daemon@ATHENA.MIT.EDU (Jack Lloyd)
Sat Oct 27 11:28:51 2007

Date: Fri, 26 Oct 2007 10:12:12 -0400
From: Jack Lloyd <lloyd@randombit.net>
To: cryptography@metzdowd.com
Mail-Followup-To: cryptography@metzdowd.com
In-Reply-To: <000c01c81786$f807b3d0$6601a8c0@lenovo>

On Thu, Oct 25, 2007 at 09:16:21PM -0700, Alex Pankratov wrote:
> Assuming the password is an English word or a phrase, and the 
> secret is truly random, does it mean that the password needs 
> to be 3100+ characters in size in order to provide a "proper"
> degree of protection to the value ? 

If E(key) >= E(text), why not use a one time pad?

> Or, rephrasing, what should the entropy of the password be 
> compared to the entropy of the value being protected (under
> whatever keying/encryption scheme) ? 

Entropy != economic value

-Jack

---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[106496] in cryptography@c2.net mail archive

Re: Password vs data entropy

daemon@ATHENA.MIT.EDU (Jack Lloyd)Sat Oct 27 11:28:51 2007

daemon@ATHENA.MIT.EDU (Jack Lloyd)
Sat Oct 27 11:28:51 2007