[Cryptography] How can you enter a 256-bit key in 12 decimal digits?
Jerry Leichter
leichter at lrw.com
Sun Jan 3 20:57:25 EST 2016
> > If someone can get at your data by brute forcing a key in a 40-
> > bit key space, why is it legal to call this 256-bit encryption?
>
> Because no one has taken them to court for fraud and won or gotten a settlement.
And it's unlikely anyone ever will. The encryption has a 256-bit key, exactly as claimed. The fact that there's no way to enter more than a tiny fraction of all possible keys is almost certain to be seen as a separate issue.
V-rated tires are good for a maximum speed of 149 mph and the rating doesn't change if the car they are mounted can make it to 100 mph, on a good day, going downhill with a strong wind at its back.
More to the point, a common Master combination lock has 36 numbers on the face and the combination is 3 positions long. But in fact the is so much slop in the mechanism that "off by 1" usually works. So instead of 36^3 combinations, there are really 12^3. Fraud?
The legal system is good for many things, but this kind of fine-grained analysis of a technical issue ... isn't one of them. Better to rely on education and informed consumers....
-- Jerry
More information about the cryptography
mailing list