RFI-EMI-GUY
Member
- Joined
- Dec 22, 2013
- Messages
- 7,471
At this point, nobody expects quantum computers to crack AES.
My parents never expected to see smartphones, HDTV or a man on the moon.
That said, where is my flying car?
At this point, nobody expects quantum computers to crack AES.
Every one of those things was believed to be possible long before they became a reality.My parents never expected to see smartphones, HDTV or a man on the moon.
Not going to happen!
Forget AES-256. Consider AES-128.
If some machine existed that could test 2^80 possible key variables a second (that's 1,208,925,819,614,629,174,706,176 keys a second) which is very unlikely to exist anywhere, it would take that machine about 100,000 years to test just 1% of the key space.
For AES-256 multiply 100,000 years by 2^128 to test 1% of the key space.
It's a safety factor to keep the algorithm secure even given quantum computing and Moore's Law hitting the fundamental limits of technology.
128 bits is unlikely to be cracked, except possibly by quantum supercomputers. For average folks, that's good enough, but for governments who need to keep encrypted messages secret for a long time, that may not be good enough. 256 bits adds a substantial safety factor above and beyond even the most wildly optimistic estimates of possible advances in computing technology.
I'd also note that as far as I'm aware, to date, some algorithms with less pedigree, like DES and RC4, have not even been cracked.
I don't discount the possibility of peeps choosing weak keys - in fact I've seen it from time to time. It's still not cracking. And it's your only hope for AES.
128 bit AES is a Type 3 encryption that anyone can own and use in the US. 256 bit AES is a Type 1 classified level encryption and not legal to own or use by us mortal humans. It would require an account with the NSA and an authorized custodian for the equipment.
I'll have what he's smoking...256 bit AES is a Type 1 classified level encryption and not legal to own or use by us mortal humans. It would require an account with the NSA and an authorized custodian for the equipment.
128 bit AES is a Type 3 encryption that anyone can own and use in the US. 256 bit AES is a Type 1 classified level encryption and not legal to own or use by us mortal humans. It would require an account with the NSA and an authorized custodian for the equipment.
I think you'd better cite your source on this one.
128 bit AES is a Type 3 encryption that anyone can own and use in the US. 256 bit AES is a Type 1 classified level encryption and not legal to own or use by us mortal humans. It would require an account with the NSA and an authorized custodian for the equipment.
Look here under Type 1 product: NSA cryptography - Wikipedia
"A Type 1 Product refers to an NSA endorsed classified or controlled cryptographic item for classified or sensitive U.S. government information, including cryptographic equipment, assembly or component classified or certified by NSA for encrypting and decrypting classified and sensitive national security information when appropriately keyed". VINSON and Fascinator encryption share the same category.
Then look up Type 3 products further down on the page and you will find the earlier AES 128 flavor which is bundled with DES, etc. A Type 3 product is "Unclassified cryptographic equipment, assembly, or component used, when appropriately keyed, for encrypting or decrypting unclassified sensitive U.S. Government or commercial information, and to protect systems requiring protection mechanisms consistent with standard commercial practices. A Type 3 Algorithm refers to NIST endorsed algorithms, registered and FIPS published, for sensitive but unclassified U.S. government and commercial information".
If you, a regular human is in possession of a Type 1 encryption device, its supposed to be under control of a custodian and someone would be in trouble for loosing control of it. If the US Govt finds out you have a Type 1 device you can get a visit from someone in the Govt to fetch it back. This happens a lot with military radio collectors.
You're reading that wrong.
AES-256 is the only flavour of AES good enough to be considered Type I by the NSA.
However AES in general is good enough to be considered Type III by the NSA.
Nowhere does it say regular humans can't possess AES-256.
I'm pretty sure the US Government would have a hard time seizing all those contraband AES-256 devices deployed all over the world.
I had to come back to this. If as you state, AES-128 Is so very secure that it would take 100,000 years to test 1% of the key space, why bother with a 256 bit key space? Do the developers know something we dont?