Anyone into code breaking i.e. decryption?

FiatKiller

sr. member

Activity: 378

Merit: 250

Quote from: OnkelPaul on June 11, 2013, 06:43:05 AM

Caveat: I've not looked at your sample data yet, these are just some general observations regarding non-expert cryptography.

You should not conclude that just because a random selection of forum members can't decode your sample, your encryption algorithm is secure.
In the crypto scene, an algorithm is considered secure if the security of messages ONLY depends on secrecy of the encryption keys.
In addition, the algorithm must be practically usable (so no one-time pads which would otherwise provide perfect security) and secure even in the presence of multiple similar messages or known plaintexts (that was what enabled the decryption of german Enigma messages during WWII).

Even if you feel your algorithm is secure it is very likely that cryptography experts could show you its weaknesses if they bothered.

Onkel Paul

Well that's what I'd like is for experts to have fun with it. Not looking to market it especially with the laws about exporting cryptographic tools. I used to break codes for fun when I was a kid and even knowing the algorithm I used... I don't think *I* could break it. I even sent it to a Navy guy and never heard back.

I not sure what you mean by the security depending only on the keys. You would need my program or at least the methods I'm using.

OnkelPaul

legendary

Activity: 1039

Merit: 1005

Caveat: I've not looked at your sample data yet, these are just some general observations regarding non-expert cryptography.

You should not conclude that just because a random selection of forum members can't decode your sample, your encryption algorithm is secure.
In the crypto scene, an algorithm is considered secure if the security of messages ONLY depends on secrecy of the encryption keys.
In addition, the algorithm must be practically usable (so no one-time pads which would otherwise provide perfect security) and secure even in the presence of multiple similar messages or known plaintexts (that was what enabled the decryption of german Enigma messages during WWII).

Even if you feel your algorithm is secure it is very likely that cryptography experts could show you its weaknesses if they bothered.

Onkel Paul

b!z

legendary

Activity: 1582

Merit: 1010

Quote from: pand70 on June 09, 2013, 09:25:30 AM

Quote from: FiatKiller on June 07, 2013, 12:14:26 PM

If anyone wants to try, this is a simple paragraph with normal words without tons of Qs & Zs, etc. lol

What's the deal with Qs and Zs? Huh

Uncommon english letters.

FiatKiller

sr. member

Activity: 378

Merit: 250

Quote from: pand70 on June 09, 2013, 09:25:30 AM

Quote from: FiatKiller on June 07, 2013, 12:14:26 PM

If anyone wants to try, this is a simple paragraph with normal words without tons of Qs & Zs, etc. lol

What's the deal with Qs and Zs? Huh

In other words, less common letters that make codebreaking more difficult. The most common letters in english are ETAONRISH (in order). My test file definitely has alot of those.

mprep

global moderator

Activity: 3794

Merit: 2612

In a world of peaches, don't ask for apple sauce

Quote from: freigeist on June 09, 2013, 08:34:00 AM

Quote from: mprep on June 09, 2013, 07:32:04 AM

Quote from: freigeist on June 09, 2013, 06:48:33 AM

I have few questions too but about rar files security.

1) Does somebody knows if is it possible to unlock a locked rar file
and change for example a file name or directory name in it without
corrupting it ?

2) Is it possible to crack a password protected (encrypted) rar file if
let say 20 to 30 characters random password was used to secure it?
If yes how long could the cracking process last on a computer grid?

1) Yes. You just gotta brute force the password with the specific software.
2) Maybe, depend on your luck as the password can be any type. Depends on the characters though. A password with 20 random letters would take a desktop PC about 157 billion years to crack it (to go through every possible value). This was tested amaturely by me on the site howsecureismypassword.net by simply typing 20 random letters. Don't know if it's true but you can test it for yourself if you want.

Thanks.

For question under point

1) for locked file I thought of an unencrypted file
without password protection that was locked by using rar locking option only which
prevents the user from changing the content or the rar archive.
By using only this option the content is still readable or extractable without the password
but can't be altered by the user in the rar archive itself.
I tried to alter a file name in the archive by opening the archive in text editor and changing the file name
and then saving the file again.
After I have opened it again in the winrar I receved an error that the file is corrupted.

2) so actually there is no threat from a normal pc user but could it be from a corporation or government
which could have a lot of computing power?

I they used a supercomputer which most governments have under control I bet then they would definetly crack much much MUCH faster. It would just require enough computing power which as I mentioned they probably have.

pand70

sr. member

Activity: 476

Merit: 250

Quote from: FiatKiller on June 07, 2013, 12:14:26 PM

If anyone wants to try, this is a simple paragraph with normal words without tons of Qs & Zs, etc. lol

What's the deal with Qs and Zs? Huh

freigeist

hero member

Activity: 1110

Merit: 534

Quote from: mprep on June 09, 2013, 07:32:04 AM

Quote from: freigeist on June 09, 2013, 06:48:33 AM

I have few questions too but about rar files security.

1) Does somebody knows if is it possible to unlock a locked rar file
and change for example a file name or directory name in it without
corrupting it ?

2) Is it possible to crack a password protected (encrypted) rar file if
let say 20 to 30 characters random password was used to secure it?
If yes how long could the cracking process last on a computer grid?

1) Yes. You just gotta brute force the password with the specific software.
2) Maybe, depend on your luck as the password can be any type. Depends on the characters though. A password with 20 random letters would take a desktop PC about 157 billion years to crack it (to go through every possible value). This was tested amaturely by me on the site howsecureismypassword.net by simply typing 20 random letters. Don't know if it's true but you can test it for yourself if you want.

Thanks.

For question under point

1) for locked file I thought of an unencrypted file
without password protection that was locked by using rar locking option only which
prevents the user from changing the content or the rar archive.
By using only this option the content is still readable or extractable without the password
but can't be altered by the user in the rar archive itself.
I tried to alter a file name in the archive by opening the archive in text editor and changing the file name
and then saving the file again.
After I have opened it again in the winrar I receved an error that the file is corrupted.

2) so actually there is no threat from a normal pc user but could it be from a corporation or government
which could have a lot of computing power?

FiatKiller

sr. member

Activity: 378

Merit: 250

So no one cracked my file yet? Maybe I've come up with something. :-D

mprep

global moderator

Activity: 3794

Merit: 2612

In a world of peaches, don't ask for apple sauce

Quote from: freigeist on June 09, 2013, 06:48:33 AM

I have few questions too but about rar files security.

1) Does somebody knows if is it possible to unlock a locked rar file
and change for example a file name or directory name in it without
corrupting it ?

2) Is it possible to crack a password protected (encrypted) rar file if
let say 20 to 30 characters random password was used to secure it?
If yes how long could the cracking process last on a computer grid?

1) Yes. You just gotta brute force the password with the specific software.
2) Maybe, depend on your luck as the password can be any type. Depends on the characters though. A password with 20 random letters would take a desktop PC about 157 billion years to crack it (to go through every possible value). This was tested amaturely by me on the site howsecureismypassword.net by simply typing 20 random letters. Don't know if it's true but you can test it for yourself if you want.

freigeist

hero member

Activity: 1110

Merit: 534

I have few questions too but about rar files security.

1) Does somebody knows if is it possible to unlock a locked rar file
and change for example a file name or directory name in it without
corrupting it ?

2) Is it possible to crack a password protected (encrypted) rar file if
let say 20 to 30 characters random password was used to secure it?
If yes how long could the cracking process last on a computer grid?

FiatKiller

sr. member

Activity: 378

Merit: 250

If anyone wants to try, this is a simple paragraph with normal words without tons of Qs & Zs, etc. lol

https://dl.dropboxusercontent.com/u/40920348/072076072022072075089072.DOC

I tried to think outside the box, and not just do a simple XOR pass etc. But since I am not a math major, perhaps I missed some simple facts/principles about encryption.

Bush

newbie

Activity: 42

Merit: 0

Send me a PM I will check it out.

FiatKiller

sr. member

Activity: 378

Merit: 250

Several years ago, I had made an encryption program using several passes of different methods, one after the other, and been looking for someone to try to break it since. Anyone interested to trying to decrypt a simple paragraph? I think how well it works is dependant on what keys you choose, so it may vary greatly how effective it is.

Topic: Anyone into code breaking i.e. decryption? (Read 788 times)