Új hozzászólás Aktív témák

• #1839 F34R nagyúr SG3rg0 #1838

  Új Válasz 2013-11-09 21:09:08 #1839

  Új hozzászólás

  Összes hozzászólása itt Válaszok az összes hozzászólására itt Válaszok erre a hozzászólásra

  Privát üzenet küldése

  

  F34R

  nagyúr

  válasz SG3rg0 #1838 üzenetére

  "What encryption algorithms does MEGA use internally?

  For bulk transfers, AES-128 (we believe that the higher CPU utilization of AES-192 and AES-256 outweighs the theoretical security benefit, at least until the advent of quantum computers). Post-download integrity checking is done through a chunked variation of CCM, which is less efficient than OCB, but not encumbered by patents.

  For establishing shared secrets between users and dropping files into your inbox, RSA-2048 (the key length was chosen as middle grounds between "too insecure" and "too slow"). All encryption, decryption and key generation is implemented in JavaScript, which limits throughput to a few MB/s and causes significant CPU load. We are looking forward to the implementation of the proposed HTML5 WebCrypto API in all major browsers, which will eliminate this bottleneck.

  JavaScript's built-in random number generator is enhanced through a mouse/keyboard timing-driven RC4 entropy pool as well as crypto.* randomness where available (Chrome and Firefox only at the moment - keys generated by Internet Explorer and Safari are less secure than they could be)."

  volt egy komolabb javascript problema ami miatt az RSA kulcs kiajtszhato igy az adatok mar a titkositas alatt voltak, barmikor megekinthetoek voltak, most mar a GUI is atment nehany szabason.
  En meg mindig azt mondom hogy az lesz a sorsa mint a hajdani megauploadnak.

Új hozzászólás Aktív témák