Securing online communications
Ian Batten
ukcrypto at chiark.greenend.org.uk
Thu, 25 Dec 2008 09:26:49 +0000
On 24 Dec 2008, at 09:22, John Brazier wrote:
> Ian wrote:
>
>>> RC4 is very fast, and I don't believe that
>>> (publicly, at least) there are worrying results against it.
>
> Really? I'd understood RC4 to be deprecated now, due to the several
> attacks on it. Or were you thinking of a specific context?
I thought the practical attacks on RC4 was actually attacks on WEP key
management and implementation (like Enigma, the cipher is stronger
than its usage). But I'd be very happy for someone to talk crypto on
ukcrypto. My reading of what I've seen is that with decent length
keys re-generated for each connection and with the nonce values
regenerated afresh it would be fine. I'll pass the time between
milestones in cooking lunch finding out...
ian