|
Post by Polaris Seltzeris on Dec 7, 2016 8:37:34 GMT
Honestly surprised I didn't make a thread like this awhile ago, but curious on what these forum's favorite crypto/hash types are.
For symmetric algorithms, AES is the most used and most secure cryptographic algorithm, while Blowfish is another popular alternative but I don't really see how it's better than AES.
As for asymmetric algorithms, RSA is the most used but I can't say it's the most secure due to rumors of the NSA breaking it. PGP also has some security flaws but it's also pretty widely used.
If you're confused, symmetric cryptographic algorithms only have a key and the encrypted message, so you can't decrypt the message unless you have the key. As for asymmetric algorithms, you get the public key and the encrypted message, but there is also a private key you must have to decrypt the message.
Hashes are a completely different subject though because they don't have a key, which is why they're used to 'hash' passwords. Arguably the most secure thing you can do to hash passwords right now is use 100,000 rounds of SHA3-512 on all passwords, although bcrypt is still the default hash in PHP which is really dumb considering every day bcrypt gets more and more easy to crack (afaik now it only takes a few days on an OVH VPS to crack a bunch of bcrypt hashed passwords), but luckily people are switching from PHP to Java or Python (django!) web frameworks.
|
|
Oliver
Club 4000 Member
Use @srpunchwood51 to tag me.
Posts: 4,596
|
Post by Oliver on Dec 7, 2016 10:46:30 GMT
Blowfish. To my knowledge, blowfish takes slightly longer to encrypt compared to MD5/SHA1 which means it'll take longer to crack, all the milliseconds add up.
Unless I'm thinking of bcrypt, I can't even remember anymore
|
|
Deleted
Deleted Member
Posts: 0
|
Post by Deleted on Dec 7, 2016 10:57:44 GMT
I'd say SHA3 because its the only one I know off of the list. Also, I'm quite the fan of the SHA3-512 encryption.
|
|
|
Post by Polaris Seltzeris on Dec 7, 2016 20:02:10 GMT
Blowfish. To my knowledge, blowfish takes slightly longer to encrypt compared to MD5/SHA1 which means it'll take longer to crack, all the milliseconds add up. Unless I'm thinking of bcrypt, I can't even remember anymore Sorry but this post made no sense LOL Blowfish != hash Also sha1 is really outdated and broken, there's a reason why I used SHA3 instead of SHA1 in the poll. 100,000 rounds of SHA3-512 is the best you can get right now. Obviously bcrypt would be better than md5 and sha1, but now I see scrypt and sha3 wayyy better than bcrypt.
|
|
Oliver
Club 4000 Member
Use @srpunchwood51 to tag me.
Posts: 4,596
|
Post by Oliver on Dec 7, 2016 20:16:37 GMT
Blowfish. To my knowledge, blowfish takes slightly longer to encrypt compared to MD5/SHA1 which means it'll take longer to crack, all the milliseconds add up. Unless I'm thinking of bcrypt, I can't even remember anymore Sorry but this post made no sense LOL Blowfish != hash Also sha1 is really outdated and broken, there's a reason why I used SHA3 instead of SHA1 in the poll. 100,000 rounds of SHA3-512 is the best you can get right now. Obviously bcrypt would be better than md5 and sha1, but now I see scrypt and sha3 wayyy better than bcrypt. sorry i was just going off my minimal knowledge of it, was on phone so couldn't do the research, sorrryy
|
|
Lucas
Veteran Member
fucking gross
Posts: 2,495
| Likes: 6,019
|
Post by Lucas on Dec 7, 2016 23:04:20 GMT
Apparently no one follows your rules in the poll
|
|