Re: Death of PGP Key 0xFBAF5E44 at 19:03 02 Jan 1999 UTC

Adam Shostack (adam@homeport.org)
Mon, 4 Jan 1999 11:28:33 -0500

• Next message: Ben Laurie: "Re: Death of PGP Key 0xFBAF5E44 at 19:03 02 Jan 1999 UTC"
• Previous message: Bruce Schneier: "Twofish speedup -- 258 clocks per block!"
• In reply to: Mail System Internal Data: "DON'T DELETE THIS MESSAGE -- FOLDER INTERNAL DATA"
• Next in thread: Evan Brewer: "Re: Death of PGP Key 0xFBAF5E44 at 19:03 02 Jan 1999 UTC"
• Reply: Evan Brewer: "Re: Death of PGP Key 0xFBAF5E44 at 19:03 02 Jan 1999 UTC"

On Sun, Jan 03, 1999 at 06:45:41PM +0000, Ben Laurie wrote:
| Anonymous wrote:
| > We went over all this already on one of the crypto lists. Elliptic curve
| > has no advantage in this regard. Using any of these methods will probably
| > significantly weaken your key, unless you have a much stronger passphrase
| > than most people use.
|
| How do you know the strength of most people's passphrases?

        There is a substantial body of research over the last 20 (or
more) years, showing consistently that most people will, given the
chance, select their password from a very small, and easily searched
space. There is no reason to believe that changing the word
'password' to 'passphrase' will suddenly shift people's behavior.

-- 
"It is seldom that liberty of any kind is lost all at once."
					               -Hume

• Next message: Ben Laurie: "Re: Death of PGP Key 0xFBAF5E44 at 19:03 02 Jan 1999 UTC"
• Previous message: Bruce Schneier: "Twofish speedup -- 258 clocks per block!"
• In reply to: Mail System Internal Data: "DON'T DELETE THIS MESSAGE -- FOLDER INTERNAL DATA"
• Next in thread: Evan Brewer: "Re: Death of PGP Key 0xFBAF5E44 at 19:03 02 Jan 1999 UTC"
• Reply: Evan Brewer: "Re: Death of PGP Key 0xFBAF5E44 at 19:03 02 Jan 1999 UTC"