Hi, i wrote: > > If you can memorize it without the help of publicly knowable details of > > your life, then it's too easy to enumerate with nowadays' hardware.
Curt wrote: > He should've salted it a little. Sure. I also did not "crack" it by enumeration but by base64 -d after recognizing the type of redundancy in Gene's challenge. But the salt must be stored somewhere outside the brain (because it is not safe if ... yada yada ...). This brings us to the (still amateurish) idea of having a good encryption algorithm with a computer stored key and a human memorizable input word. But as soon as the computer stored secret gets stolen and brought to an enumaration expert, the protection against skilled attacks is weak again. > yes, I spoke with Ted over lunch How annoyed was he by the topic comming up once again ? > That's because he thinks entropy is a property of the process that > generates the output I will have to think about this idea ... (with no expectation to beat Theodore T'so in such a game) ... Have a nice day :) Thomas
