yeah but the NAS solutions out there that encrypt use AES which I don't trust.
I would like a solution that is open source.
yeah but the NAS solutions out there that encrypt use AES which I don't trust.
I would like a solution that is open source.
Currently supported algorithms are: AES-XTS, AES-CBC, Blowfish-CBC, Camellia-CBC, 3DES-CBC, and NULL. The default and recommended algorithm is AES-XTS. NULL is unencrypted.
Ideally use built in encryption, however you have a very unusual attack surface with encryption on a shared resource since you want people on the network to get access to it, it's almost a pointless exercise anyway.
You do realise that AES is an open standard?AES is unsecure, if the gov has a backdoor to it, it is just a matter of time before the criminals do also. What am I talking about? They ARE criminals.
Yeah, AES is supported for Top Secret from what I read. It's supported by CPUs and is used for SSL. You can use a cascade of ciphers though, but that would slow things down. You can use TC to do a speed test on the different encryption schemes.
This standard may be used by Federal departments and agencies when an agency determines that sensitive (unclassified) information (as defined in P. L. 100-235) requires cryptographic protection.
Other FIPS-approved cryptographic algorithms may be used in addition to, or in lieu of, this standard. Federal agencies or departments that use cryptographic devices for protecting classified information can use those devices for protecting sensitive (unclassified) information in lieu of this standard.
In addition, this standard may be adopted and used by non-Federal Government organizations. Such use is encouraged when it provides the desired security for commercial and private organizations.
I was under the impression that is was the primary reason for 3 key sizes. That 256 was to be used for top secret.Do you have a reference for that?
My perception is that AES is only authorized for use on sensitive but unclassified data. From FIPS 197:
Uno
I was under the impression that is was the primary reason for 3 key sizes. That 256 was to be used for top secret.
https://www.nsa.gov/ia/programs/suiteb_cryptography/
Advanced Encryption Standard (AES) Encryption FIPS Pub 197 128 bit keys for SECRET
256 bit keys for TOP SECRET