Jump to content

Crypt.au3 - Security

dapapa
 Share

Recommended Posts

Mat Universalist

Mat

Posted
Posted

How secure is this UDF? Is it completely based off of windows functions?

It uses functions from Advapi32.dll

As it has already been said many times on the forum, nothing will ever be completely safe. If there's a hacker with enough skill and time then he will crack it. I've never had a need for serious encryption personally.

AutoIt Project Listing

Link to comment
Share on other sites
PsaltyDS Universalist

PsaltyDS

Posted
Posted

You're concerned about the encryption on your data being "backdoored for government agencies", and you're coding on Windows with an interpreted scripting language like AutoIt?

:P

Better loosen the band on that tin foil hat a little, it's restricting blood flow.

:mellow:

Valuater's AutoIt 1-2-3, Class... Is now in Session!For those who want somebody to write the script for them: RentACoder"Any technology distinguishable from magic is insufficiently advanced." -- Geek's corollary to Clarke's law
Link to comment
Share on other sites
jchd Universalist

jchd

Posted
Posted

The _NSAKEY story is a dead beef not worth moving electrons to repost it.

Now yes, Crypt.au3 is a wrapper around several functions in advapi32.dll which is where the (very) hard work is done.

In short, the weakest link is still in the same place: between the chair and the keyboard. Then the system itself, at the hardware of software levels. Then the correct use of crypto primitives by the program invoking them. Nothing has changed in this respect.

How much are worth the secrets you're encrypting determines exactly how much you should spend in security measures so that gaining access to those secrets is worthless.

This wonderful site allows debugging and testing regular expressions (many flavors available). An absolute must have in your bookmarks.
Another excellent RegExp tutorial. Don't forget downloading your copy of up-to-date pcretest.exe and pcregrep.exe here
RegExp tutorial: enough to get started
PCRE v8.33 regexp documentation latest available release and currently implemented in AutoIt beta.

SQLitespeed is another feature-rich premier SQLite manager (includes import/export). Well worth a try.
SQLite Expert (freeware Personal Edition or payware Pro version) is a very useful SQLite database manager.
An excellent eBook covering almost every aspect of SQLite3: a must-read for anyone doing serious work.
SQL tutorial (covers "generic" SQL, but most of it applies to SQLite as well)
A work-in-progress SQLite3 tutorial. Don't miss other LxyzTHW pages!
SQLite official website with full documentation (may be newer than the SQLite library that comes standard with AutoIt)

Link to comment
Share on other sites
dapapa Seeker

dapapa

Posted
  • Author
Posted

The _NSAKEY story is a dead beef not worth moving electrons to repost it.

Now yes, Crypt.au3 is a wrapper around several functions in advapi32.dll which is where the (very) hard work is done.

In short, the weakest link is still in the same place: between the chair and the keyboard. Then the system itself, at the hardware of software levels. Then the correct use of crypto primitives by the program invoking them. Nothing has changed in this respect.

How much are worth the secrets you're encrypting determines exactly how much you should spend in security measures so that gaining access to those secrets is worthless.

Well said. Thanks for the help.

Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
 Share
Go to topic listing

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...