# ways to make cryptography algorithms

Discussion in 'privacy technology' started by Encrypting_Lover, Oct 9, 2015.

1. ### Encrypting_LoverRegistered Member

Joined:
Sep 11, 2015
Posts:
10
Hi guys!
I want to ask members which eBook do you suggest to read about ways to make cryptography algorithms? and test their security??
I want to make myself encryption algorithm and which eBook do you suggest that describe math based encryption?

2. ### stackzRegistered Member

Joined:
Dec 27, 2007
Posts:
631
Location:
Sydney Australia
Have a look at "Handbook of Applied Cryptography"
-http://cacr.uwaterloo.ca/hac/

3. ### Encrypting_LoverRegistered Member

Joined:
Sep 11, 2015
Posts:
10
I found it before it's good eBook, but i want some good books about maths in cryptography and how to test their security...
How to make sure our algorithms is secure??...??

4. ### ComputerSaysNoRegistered Member

Joined:
Aug 9, 2012
Posts:
1,448
Bruce Scheiner - Applied Cryptography
Bruce Scheiner - Practical Cryptography

Those 2 books should get you started. I recommend Applied Cryptography to start with.

5. ### NebulusRegistered Member

Joined:
Jan 20, 2007
Posts:
1,593
Location:
European Union
Please don't take this the wrong way, but I think it would be better to leave designing of the crypto algorithms to the crypto experts and you should make good use of their expertise and work by using already designed algorithms...

Then again, learning ins and outs of crypto is a worthy goal, so if you are interested in it, you should do it.

6. ### Encrypting_LoverRegistered Member

Joined:
Sep 11, 2015
Posts:
10
I studied about more algorithms but found out all of them can break!!
for example at first i thought OTP encryption is strong! but i saw it's breakable!!
RSA, DES, TDES ... are breakable so i think to have better secret messages we need to study better about these algorithms and make an algorithm is mixed.

7. ### brians08Registered Member

Joined:
Apr 27, 2008
Posts:
54
Yes, many crypto algos have been broken over the years but current encryption standards are not broken right now. One thing I noticed is that you mixed RSA with DES in your statement. Comparing symmetric to asymmetric is not very useful. DES is broken because it is just not complex enough given the speed of modern computing power. RSA on the other hand is not actually broken. RSA recommendation is to use 3k bit keys which results in very strong encryption. Some older implementations are still running on servers that use 1k bit key and these are not secure. Public Key crypto can also be done with ECC (Elliptical Curve Cryptography) and this is promising to be secure with keys smaller than 1k. Public key crypto is vulnerable to quantum computing of course but quantum computers don't exist right now.

AES, Twofish, Serpent on the other hand are symmetric ciphers and not known to be broken and not expected to be broken any time soon. For all practical purposes. If the NSA wanted to get into your system they would put spyware on your computer or put a hidden camera in your home to capture your password when you type it in. This is easier than trying to break the encryption.

8. ### Encrypting_LoverRegistered Member

Joined:
Sep 11, 2015
Posts:
10
Yes That's right you said but I can not trust to public algorithms, you know never any organization doesn't say some secret projects.
NSA had a project named it ronena (think it was named it ronena) to break OTP encryption! but you can not find any project NSA named it!!
I do not want to make any challenge with NSA, SIS.
all of these are for my country people does not have any privacy!
and you can make sure NSA does not need to put any camera in your house! because of they can trace you from internet! there are some software to monitor even remote on you desktop also any firewall or anti-virus could not block this connection also they can manage your files, so what do you have to say?!

9. ### mirimirRegistered Member

Joined:
Oct 1, 2011
Posts:
6,931
Overwrought, maybe

10. ### brians08Registered Member

Joined:
Apr 27, 2008
Posts:
54
All I can say is that encryption cannot help you if you connect to the internet and someone installs spy software. The weakest link in all this is the operating system, not the encryption. You have to create a system that is not connected to any network such that your adversary does not know it exists. Then you have a chance of keeping secrets. However, you will need to send and receive encrypted data somehow. If you send this via the internet, it can't be read but it can be identified as encrypted data. If it is illegal where you live to use encryption, you are in trouble even if they can't break the encryption. You will need to figure out how to send encrypted data so that it can't be easily detected. Maybe put data on micro SD cards and hide them in your shoe?

11. ### mirimirRegistered Member

Joined:
Oct 1, 2011
Posts:
6,931
Use covert channels in HD videoconferencing. You can get bandwidth maybe ~1% of throughput.