[Cryptography] On 40-bit encryption
Bill Stewart
billstewart at pobox.com
Sat Aug 23 02:06:52 EDT 2014
> > Oh, but you could check. Someone form Iran or North Korea trying to
> > download the strong build would be required to set the Evil bit on all
> > their packets.
One of the more pleasant episodes was fortify.net publishing their patch
that would turn the 40-bit crypto into 128-bit crypto,
basically by changing a 40 to a 128 in one or two places.
The RC4 algorithm would accept however much key material you wanted to give it,
so the difference was strictly how many bits of the session key to use,
and apparently the code was written straightforwardly.
More information about the cryptography
mailing list