Technically yes as this is how hackers reverse engineer encryption keys to create keygens etc. However it does depend on what encryption type you use, some have not yet been hacked, so the chances are of course very very minute, and you would need to be encrypting something that some desperately wanted in order for them to put the effort in.
This might help http://en.wikipedia.org/wiki/Blowfish_(cipher) Russ On Fri, Jun 17, 2011 at 6:00 PM, Steve Reich <[email protected]>wrote: > > If I have Encrypt(x,y) which equals z OR Decrypt(x,y) which equals z, can z > be determined (encrypted or decrypted) without having both x and y? > > Example: > > <cfset variables.secretKey = > > "dj0yJmk9TTJOUXFnakphWjVlJmQ9WVdrOVVtMU9jak5rTjJNbWNHbzlPREV4TVRrNE5EWXkmcz1jb25zdW1lcnNlY3JldCZ4PWQx"> > <cfset variables.value = Encrypt("MYPASSWORD", variables.secretKey)> > > if you output variables.value, you get: > *<'Y^MZ!]F;*=V@ > > So... if someone gets my MYPASSWORD and *<'Y^MZ!]F;*=V@, can they figure > out > the value of variables.secretKey? > > Thanks, > Steve > > > ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:345410 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
