[cryptography] Current state of brute-forcing random keys?

Paul Hoffman paul.hoffman at vpnc.org
Thu Jun 9 13:53:05 EDT 2011

On Jun 9, 2011, at 10:43 AM, Ian G wrote:

> On 10/06/11 3:14 AM, Paul Hoffman wrote:
>> Greetings again. I am helping someone design a system that will involve giving someone a randomly-generated key that they have to type in order to unlock data that is private but not terribly valuable. Thus, we want to keep the key as short as practical to reduce typing and mis-typing, but long enough to prevent trivial brute-force attacks. The encryption will be AES-128 in CBC mode.
>> What is the current state of brute-force attacks on AES-128 blobs? Are there recent results where we can estimate the cost of brute-forcing 64-bit and 80-bit keys?
> Not quite what you are asking for, but you could poke around here:
> http://www.keylength.com/en/3/

Poked, rejected. I want measurements from which I can derive my own recommendations. I don't see any recent measurements here.

--Paul Hoffman

More information about the cryptography mailing list