Re: GPG Question on Symmetric Key Input
- From: Bohgosity BumaskiL <brewhaha@xxxxxxxxxxxxxxxxxxxxxx>
- Date: Thu, 23 Jun 2011 03:11:01 -0600
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 2011-05-26 6:01 AM, Globemaker wrote:
On May 26, 1:52 am, Jeffrey Goldberg <nob...@xxxxxxxxxxxx> wrote:GPG and PGP use a hash on the symmetric key you enter,
[follow-up set to comp.security.pgp.discuss]
On 11-05-25 11:55 PM, Globemaker wrote:
I have searched the documentation but there is no mention of
how I can set the AES-128 key to be one I choose. I want my key
to be hex 0x0000 0000 0000 0000 0000 0000 0000 0000 GPG
generates keys, but how can I input a key of all 128 bits of
zeros?
Last I checked, GPG does not allow this. You give it a passphrase
and it generates the key from that.
I do not want GPG to make a key for me, I want GPG to accept a
key that I specify. Is that disallowed?
Seems so.
Where in the documentation does it explain how to enter a
symmetric key of my choice?
It's open source so you can modify it yourself. Or you can find
another tool. But you might have more luck asking in the
appropriate place.
comp.security.pgp.discuss would be a far better place to get
answers. I've set followups there.
Cheers,
-j
-- Jeffrey Goldberg http://goldmark.org/jeff/ I rarely
read HTML or poorly quoting posts Reply-To address is valid
Thank you Jeffrey. I also concluded that it is not allowed to
input a symmetric key into GPG. I tried it last year and this year
my searches showed that other people also could not control the key
bits. OpenSSL does provide this capability.
In sci.crypt it is appropriate to discuss THE REASON for designing
GPG with that "feature" which is not mentioned in the
documentation. One can speculate several altruistic or sinister
REASONS that the key is untouchable. Here is a list:
1 Requiring a password to generate a key helps the goon squads to
guess the key. 2 Keys are too important to let stupid people
mishandle them. 3 Symmetric keys are more powerful than asymmetric
and goons are preventing cascading encipherments. 4 It's for the
children, the happy ones, to be insulated from tedious operations,
to use short passwords that are easy to remember and easy to write
on little papers to stick on the monitor. 5 Export permission from
Commerce for GPG is easy to get if the Gnu staff compromises on
security.
because the hash contains more entropy: It is
always 128 bits of enhanced randomness, so the
best reason for hashing your keystrokes is because
people are not always very creative with their
pass-phrases. Phil Zimmerman coined that term,
because even after he did the work of hashing
pass-phrases, he wasn't convinced that people
would always come up with sixteen letterz for
their security.
I imajin that you want to use a key with all
zeros to test the symmetric encryption method.
Well...your final analysis should include the
effect of hashing your zeros.
_______
http://ecn.ab.ca/~brewhaha/ BrewJay's Babble Bin
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.2 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/
iQCVAwUBTgMDIB47apzXdID2AQKCwwP/aV5EK3rcddNC/3UnUC8PQ/lZaZ2J9Ghr
b+Pe1em6VUpfb/YeOODH5L2E7zci9ehAMiPZGkET/KQX1UyU542h900/cLkZDrYu
Cqk7G7AW4h+DYHd2gVDe1W6XODobbes3GSKBKTM3TBDAEL7VpqjegwGTeruz6pro
RfdmEn+RHNs=
=3YLg
-----END PGP SIGNATURE-----
.
- Prev by Date: Re: Enigmail
- Next by Date: Re: GPG Question on Symmetric Key Input
- Previous by thread: Enigmail
- Next by thread: Re: GPG Question on Symmetric Key Input
- Index(es):
Relevant Pages
|
