Jano Svitok
8/30/2006 8:11:00 PM
On 8/30/06, snacktime <snacktime@gmail.com> wrote:
> IMO, if you are going to use encryption for sensitive data then you
> should read up a bit on asymmetric (publik key) versus symmetric
> cryptography and at least have a basic understanding of how this stuff
> works. Ruby openssl works great, but unless you are already familiar
> with openssl in general the docs probably won't do you much good. The
> test suite in the ruby source though has a lot of examples.
>
> Chris
Right. Cryptography is a tricky thing, and if your effort should bring
any results, it is necessary to know what you're doing. That's why
it's better to stick with the standard schemes, if possible. Omit one
little step, and your super secure encryption might degrade to
something a child will break.
Good intro book is Schneier's Applied Cryptography, and maybe the
newer Practical Cryptography, although I haven't read the latter.
Good 'encyclopedic' book is Handbook of applied cryptography by
Menezes et al., You can even download it from the web. It lists most
common-used algorithms, along with their usage and drawbacks. Beware:
It contains lots of math ;-)