Your skill will accomplish what the force of many cannot |
|
PerlMonks |
Re: Storing credentials in a cross-platform binary file?by dHarry (Abbot) |
on Sep 12, 2008 at 14:19 UTC ( [id://710907]=note: print w/replies, xml ) | Need Help?? |
Wow, your post certainly triggered lots of discussion:-) For the record: I am/used to be a cryptologist. There ain’t no such thing as 100% secure but you can make it very safe and approach the 100% if needed. In your case that seems like overkill however (do you have specific requirements?). I must confess that I am surprised/shocked by some of the arguments/ideas put forward: “good old one time pad”
“If you encrypt individual parts of file separately, you make it easier to break the encryption”
“We don't need to break DES, because the implementations are so poor” So in your case a simple file containing the passwords with a standard off-the-shelve cryptographic algorithm should do the trick unless you have very specific requirements (well do ya?). When in doubt you can always hire a specialized company to assess your security to gain confidence in it. Last but not least there is the problem of Key management which is normally the most difficult component of the entire cryptographic system! You will have to change the password with some frequency and device a strategy for that. Rest my case
In Section
Seekers of Perl Wisdom
|
|