How Secure Are Username Token Encrypted Messages

From: Josh Pollard (JoshPollard_at_discussions.microsoft.com)
Date: 12/08/04 

Date: Wed, 8 Dec 2004 08:35:04 -0800

How secure is it to encrypt the body of a message with a Username token? In
the HOL it says that it is not very secure. It doesn't say why though. It's
obviously not as secure as encrypting with a binary token, but I would like a
more in depth reason as to what it makes it not very secure.

Thanks!
 
---------------------------------
Josh Pollard
josh.glmotorsports.net/blog

Relevant Pages

  • RE: local admin account password
    ... > encrypt the database and create alerts in the event of unsuccessful ... >> no more recovery console and don't think cached logins will work. ... >> The DB file would be encrypted with EFS so only the limited user SQL ... >> itself doesn't really need to be secure as the authentication is based ...
    (Focus-Microsoft)
  • RE: local admin account password
    ... > Subject: local admin account password ... > secure it. ... > and then encrypt the file (PGP or something like it with the private ...
    (Focus-Microsoft)
  • Re: How to convert a SecureString into an encrypted String in a se
    ... secure string and into a byte array looked a little weird to me, ... You can then either convert that to a .NET string (not a good idea if the ... Note that you can encrypt your SQL network traffic on the wire if you are ... planning to encrypt the passwords using the symmetric Rijndael algorithm, ...
    (microsoft.public.dotnet.security)
  • Re: My own little replacement for the Unix crypt
    ... >> of questionable origin I decided to write my own. ... > I have no idea if it's secure because I don't know what it's for. ... simple program that would encrypt data a whole lot ... rand(). ...
    (sci.crypt)
  • Re: IBM Touts Integrated Encryption
    ... signature does ... stealing a file with the private key. ... hardware-based scheme to encrypt does indeed secure ...
    (sci.crypt)
Loading