[Discuss] Most common (or Most important) privacy leaks
Edward Ned Harvey (blu)
blu at nedharvey.com
Wed Feb 18 15:28:20 EST 2015
> From: Discuss [mailto:discuss-bounces+blu=nedharvey.com at blu.org] On
> Behalf Of Kent Borg
>
> Passwords are different from encryption keys. Completely different.
They are not completely different. They have some characteristics that are the same, and some that are different.
They are both secrets, but a password is assumed to be stored in a human brain and assumed to contain limited entropy, while an encryption key is assumed to be sufficiently long and randomly generated, and assumed to be stored on some sort of digital media.
As a result of these characteristic differences, each one is suitable for different purposes, and has different best practices - such as rate limiting guesses.
More information about the Discuss
mailing list