|
Posted by www.EdmundKirwan.com on December 11, 2006, 11:02 am
If you were Registered and logged in, you could reply and use other advanced thread options
Hi, folks,
A newbie question (I couldn't find the right Googlism to hit a result,
nor did the FAQ shine a light).
I've used a couple of tools to encrypt and decrypt files for me based
on a password of my choice. When I try decrypting an encrypted file
with the wrong password, tools generally respectfully tell me that I've
made a tit of myself, and ask me to use the right password.
I hadn't thought much about this till the other day, using a new(ish)
tool to decrypt. I entered the wrong password (unknowingly, of course)
and it told me that the file was decrypted successfully; but a look at
the contents told me that this was not so. I think it just re-encrypted
the file using the, "New," password.
My question is: how does a tool know that it's successfully decrypted a
file?
I can think of a way of doing it, but it seems a little ... insecure:
the tool adds the password to the plaintext before encryption and then
encrypts it along with everything else. Then, after decryption, the
tool checks that the first X bytes match the password, and if so:
success.
Can anyone answer my question above?
Thanks for your time,
.ed
|
|
Posted by Volker Birk on December 11, 2006, 10:24 am
If you were Registered and logged in, you could reply and use other advanced thread options
> My question is: how does a tool know that it's successfully decrypted a
> file?
By checksums.
Yours,
VB.
--
"Life was simple before World War II. After that, we had systems."
Grace Hopper
|
|
Posted by www.EdmundKirwan.com on December 12, 2006, 3:30 am
If you were Registered and logged in, you could reply and use other advanced thread options
Volker Birk wrote:
> > My question is: how does a tool know that it's successfully decrypted a
> > file?
>
> By checksums.
>
> Yours,
> VB.
> --
> "Life was simple before World War II. After that, we had systems."
> Grace Hopper
Ah!
So if file novel.txt is being encrypted to produce novel.enc, then I
presume a checksum is generated for the plaintext and stored (for
example) as the first 8 bits of novel.enc, and then the encrypted data
is stored after the checksum. And when be de-crypted, the tool strips
away the first 8 bits of novel.enc before applying the decrption
algorithm to the rest.
Though if this storing of the checksum in the first 8 bits is not
standardised, then I suppose it's unlikely that a file encrypted with
blowfish using one tool could be decrypted by another tool using
blowfish: as one could store the checksum in the first 8 bits, and one
could store the checksum in the last 8 bits.
Thanks for the information,
.ed
|
| Similar Threads | Posted | | Kerberos Decrypted - Interesting URLs on how kerberos works | July 4, 2006, 1:45 am |
| Certificate Management Tools | April 27, 2005, 9:35 am |
| Free Seuciryt tools | May 18, 2005, 6:49 pm |
| Denial of Service tools | September 30, 2006, 3:46 pm |
| Different tools for the same memory capture | January 4, 2009, 12:26 pm |
| HPSBUX0101-137 HP9000 series 700/800 Support Tools Manager | April 8, 2004, 6:37 am |
| HPSBUX0101-137 rev.3 HP-UX Support Tools Manager (xstm,cstm,stm) | May 17, 2004, 2:11 pm |
| Is there any third party tools to connect active directory with Oracle? | May 9, 2005, 8:03 am |
| Info request - Penetration Testing tools list | May 19, 2005, 8:47 pm |
| HPSBST02321 SSRT080029 rev.1 - HP StorageWorks Library and Tape Tools (LTT) Running on HP-UX, Local Unauthorized Access | March 19, 2008, 11:06 am |
|
XML site map