hi diane...
check google for "cracking 40-bit", "cracking 56-bit",
"cracking 128-bit" ...etc...
- 2-4hrs for crascking 40 bit code w/ 250 PCs....
-
- if they want to crack your encryption..they will do
- so if its worth their time or want that challenge
-
the seti project at UC berkeley has about 1,000,000
PCs trying to find "ET" ....
sorta the worlds largest super computer and its "free"
- ie...250 PCs working on a math problem is not that
- difficult to arrange ???
since you are at the DMV/police etc...
i dont think the dept has to worry about losing paying customers...
the sales guys bying selling products/services to the DMV
might have some compatibility issues interfacing to your
more secure network etc....but the paying
customers will still be paying their bills to florida
have fun
alvin
On Mon, 7 May 2001, Diane Wood wrote:
> Can anyone help me with published references clearly stating that 128-bit encryption
>and 1024-bit certificates are recommended in an e-commerce solution? Or, in
>opposition, something that explicitly states that 40-bit is a respectable/secure
>choice for e-commerce?
>
> I have enabled strong encryption on our current e-commerce website and inadvertantly
>started a major battle between our vendor sales manager and myself. The vendor is
>concerned they are losing potential customers (money) with the 128-bit requirement,
>and claiming to my management that I am being too paranoid.
>
> My management is siding with the sales force and I've been told to roll encryption
>back to 40-bit unless I can substantiate my claim that strong encryption is required
>to be industry standard for online e-commerce solutions.
>
> Any help would be greatly appreciated!
>
> Thanks,
>
> Diane Wood
> Internet & Network Security Services
> Florida Department of Highway Safety & Motor Vehicles
> [EMAIL PROTECTED]
>
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
