Re: Can someone please poke some holes in this idea?

New Message Reply About this list Date view Thread view Subject view Author view

bram (bram@gawth.com)
Tue, 6 Oct 1998 21:42:11 -0700 (PDT)


On Tue, 6 Oct 1998, Lenny Foner wrote:

> An application I'm writing saves its state to disk every so often,
> using IDEA in CBC mode. (It's using SSLeay's implementation of IDEA,
> and makes sure to start with a random IV, etc.) Each time it does so,
> it picks a new 128-bit session key for the encryption; this session
> key is also stored on disk, and is hashed by a passphrase.
>
> The question is, what's a reasonably safe way to do this?

Not directly crypto related (although it is a robustness issue) is
rollbacks.

In general, it's a good idea to replace old files as follows:

1) create a new file with the new state

2) delete the old file

3) rename the new file to have the old files name

This way, theres no chance of completely losing everything just because
the computer happened to crash at the exact wrong moment.

-Bram


New Message Reply About this list Date view Thread view Subject view Author view

 
All trademarks and copyrights are the property of their respective owners.

Other Directory Sites: SeekWonder | Directory Owners Forum

The following archive was created by hippie-mail 7.98617-22 on Sat Apr 10 1999 - 01:15:20