Re: Low-Impact Symetric Cypher for Perl Programs?

Crypt::Ciphersaber is pure-Perl, fairly fast, and is slightly more complex than RC4. If you use Ciphersaber level 2, it's slower but more secure. It's very easy to install, too.

I'm not aware of any specific attacks, but I don't do the math necessary to be sure.

Comment on Re: Low-Impact Symetric Cypher for Perl Programs?

Replies are listed 'Best First'.
Re: Re: Low-Impact Symetric Cypher for Perl Programs? by John M. Dlugosz (Monsignor) on Aug 25, 2001 at 02:09 UTC
Hmm, I thought Ciphersaber was basically RC4 with a little header. I'll take another look at it. (later) I see. "level 2" was added as a response to that weakness. The thing about RC4 was the presence of weak keys. The paper was a proof, but too technical to really understand as a user. I would suppose that one could preprocess the key string or postprocess the permutation (the thing that the passphrase generates) to avoid the weak keys, but nothing like that was stated. If Ciphersaber tracks these kinds of issues, as a slightly higher level than raw RC4 it indeed looks attractive. —John	[reply]

Replies are listed 'Best First'.

Re: Re: Low-Impact Symetric Cypher for Perl Programs?
by John M. Dlugosz (Monsignor) on Aug 25, 2001 at 02:09 UTC

was

(later) I see. "level 2" was added as a response to that weakness.

The thing about RC4 was the presence of weak keys. The paper was a proof, but too technical to really understand as a user. I would suppose that one could preprocess the key string or postprocess the permutation (the thing that the passphrase generates) to avoid the weak keys, but nothing like that was stated. If Ciphersaber tracks these kinds of issues, as a slightly higher level than raw RC4 it indeed looks attractive.

—John

[reply]