Collaborate Disseminate
I am not a security expert, so please forgive me if the question is too obvious. We have been working with Blowfish to encrypt some of our files. We recently updated our very old OpenSSL version from 1.1.1 to 3.0.12 and we found out that B… Continue reading Why is Blowfish Cipher considered now "legacy" algorithm in OpenSSL?
Cleaning up my disk space, I found an encrypted file (*.bfa), which I encrypted with Blowfish Advanced CS (Version 2.13.00.002) about 15 years ago.
I still have a copy of the original version of Bfacs, which I used for that encryption and … Continue reading How to decrypt Blowfish Advanced CS encrypted file
In my perhaps somewhat excessive need for security, I have saved a password so securely that I can no longer access it myself.
My files have been encrypted with Blowfish Advanced CS. Fortunately, this programme allows you to try out passwo… Continue reading Brute force Blowfish Advanced CS password
For my science fair project, I will be researching the algorithm for encrypting data using the Blowfish Encryption technique. Suppose I have a word I would like to encrypt using this method called “qwertyisntgood”. It would d… Continue reading What would be the algorithm that would be used to Brute Force Blowfish Encryption?
I know this is a little bit broad, but I’d like to understand the function of this algorithm by explaining like I’m 5. And I’d like to know the difference between BCrypt and blowfish, is it because BCrypt is using a salt?
OWASP ASVS 3.0 V7.7 states the following:
Verify that cryptographic algorithms used by the application have been validated against FIPS 140-2 or an equivalent standard.
Blowfish is not included in NISTs database of FIPS… Continue reading Is Blowfish validated against any standards?
We want the ability for payments made without logging in using one of their saved payment methods to be associated with the saved payment method. E.g. if they buy a recurring subscription to magazine 1 using credit card 1, th… Continue reading How many rounds should be used to hash card numbers?
What is the strength of algorithms such as DES (Rijndael) and Blowfish
used in password manager Safe password, with the current development (2018) of quantum computing, the former parallel processing, the mandating
backdoor i… Continue reading Strength Blowfish and DES with current quantic computing and mandating backdoors
Under Armour is getting kudos for disclosing breach within weeks, but concerns remain over an unknown portion of credentials reportedly stored using the weak SHA-1 hashing function. Continue reading Under Armour Reports Massive Breach of 150 Million MyFitnessPal Accounts
So I’m currently using bcrypt to hash passwords with a randomly generated salt (as seen in the pip bcrypt module), with 12 rounds.
I have been looking around, but I cannot find a detailed and clear mathematical way to estima… Continue reading Mathematically, how long would it take to crack a bcrypt password hash?