radextt-8----Page:6
1 2 3 4 5 6 7
|
Security Analysis Equivalent to adding 20 bits of entropy to password Ordinary dictionary attack against precursor: Takes a million times longer Attacker must perform a million hashes for each candidate precursor Attack that might have taken an hour now takes over a hundred years Equivalent to adding 20 bits of entropy to password Dictionary attack directly against the amplified shared secret: Infeasible, as it has 96 bits of apparent entropy Precomputed dictionary attack: Attacker computes many amplified shared secrets from precursors and stores them on CD-ROM Uses CD-ROM in dictionary attack Once CD-ROM is developed, dictionary attack against amplified secret is equivalent to attack against precursor However, it will take decades to create CD-ROM And storage capacity needs to run in the terabytes. |