Hi guys! I want to ask members which eBook do you suggest to read about ways to make cryptography algorithms? and test their security?? I want to make myself encryption algorithm and which eBook do you suggest that describe math based encryption?
I found it before it's good eBook, but i want some good books about maths in cryptography and how to test their security... How to make sure our algorithms is secure??...??
Bruce Scheiner - Applied Cryptography Bruce Scheiner - Practical Cryptography Those 2 books should get you started. I recommend Applied Cryptography to start with.
Please don't take this the wrong way, but I think it would be better to leave designing of the crypto algorithms to the crypto experts and you should make good use of their expertise and work by using already designed algorithms... Then again, learning ins and outs of crypto is a worthy goal, so if you are interested in it, you should do it.
I studied about more algorithms but found out all of them can break!! for example at first i thought OTP encryption is strong! but i saw it's breakable!! RSA, DES, TDES ... are breakable so i think to have better secret messages we need to study better about these algorithms and make an algorithm is mixed.
Yes, many crypto algos have been broken over the years but current encryption standards are not broken right now. One thing I noticed is that you mixed RSA with DES in your statement. Comparing symmetric to asymmetric is not very useful. DES is broken because it is just not complex enough given the speed of modern computing power. RSA on the other hand is not actually broken. RSA recommendation is to use 3k bit keys which results in very strong encryption. Some older implementations are still running on servers that use 1k bit key and these are not secure. Public Key crypto can also be done with ECC (Elliptical Curve Cryptography) and this is promising to be secure with keys smaller than 1k. Public key crypto is vulnerable to quantum computing of course but quantum computers don't exist right now. AES, Twofish, Serpent on the other hand are symmetric ciphers and not known to be broken and not expected to be broken any time soon. For all practical purposes. If the NSA wanted to get into your system they would put spyware on your computer or put a hidden camera in your home to capture your password when you type it in. This is easier than trying to break the encryption.
Yes That's right you said but I can not trust to public algorithms, you know never any organization doesn't say some secret projects. NSA had a project named it ronena (think it was named it ronena) to break OTP encryption! but you can not find any project NSA named it!! I do not want to make any challenge with NSA, SIS. all of these are for my country people does not have any privacy! and you can make sure NSA does not need to put any camera in your house! because of they can trace you from internet! there are some software to monitor even remote on you desktop also any firewall or anti-virus could not block this connection also they can manage your files, so what do you have to say?!
All I can say is that encryption cannot help you if you connect to the internet and someone installs spy software. The weakest link in all this is the operating system, not the encryption. You have to create a system that is not connected to any network such that your adversary does not know it exists. Then you have a chance of keeping secrets. However, you will need to send and receive encrypted data somehow. If you send this via the internet, it can't be read but it can be identified as encrypted data. If it is illegal where you live to use encryption, you are in trouble even if they can't break the encryption. You will need to figure out how to send encrypted data so that it can't be easily detected. Maybe put data on micro SD cards and hide them in your shoe?
