![]() I don't want to spend money on an advanced version of Zip from RSA that includes high end encryption if the encryption that comes from free/shareware products like WinZip and Zip Central is sufficient if used with very strong passwords.Has anyone had any experience breaking zip files, or can point me to a white paper that explores security deficiencies with Zip 2.0? We are implementing encryption capability both for servers, files, and email (PKI architecture for email) to make sure we're compliant with HIPAA and some Chemicals sector specific legislation that's coming out, and also for internal security. ![]() It's hard to do research on this subject since the DMCA, but this topic is important to us. I'm not able to find much on the web, though, that's not in German. Brute force on a strong, 10 character random password that contains numbers and special characters would indeed be very hard to beat, but I thought the basic Zip 2.0 algorithm had been broken. However, my CIO thinks the password capability of standard Zip is impossible (or at least VERY difficult without a supercomputing farm) to crack if the user employs very strong passwords. I've been going on the assumption that the basic password protection in Zip 2.0 is fairly easy to crack, and promoting the aquisition and deployment of new security products from RSA ( SureFile) that combines Zip easy functionality with RSA 3DES or MD5 security.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |