[ prev in list ] [ next in list ] [ prev in thread ] [ next in thread ] List: openbsd-tech Subject: a tale of software maintenance: OpenSSL and EVP_CHECK_DES_KEY From: Philip Guenther <guenther () gmail ! com> Date: 2015-10-13 8:37:36 Message-ID: alpine.BSO.2.20.1510130133540.17770 () morgaine ! local [ Download message RAW ] In case you need an OpenSSL anecdote to scare your co-workers with... Many of you may remember from your crypto class in college that DES has 16 'weak' keys that have group-like properties; check wikipedia for a longer explanation. These are not generally considered a problem: in any sane situation, keys for DES are generated with a CSPRNG (cryptographically secure random number generator). Since there are 2^56 possible keys, the odds of hitting one of these is 1 in 2^52. That's "both you and your computer were--independently--struck by lightening t...