KeePass or any other password wallet to store and transport keys

Robert J. Hansen rjh at sixdemonbag.org
Mon Jul 23 03:16:25 CEST 2012


On 7/22/2012 7:22 PM, antispam06 at sent.at wrote:
> Very interesting. So having a keepass database or a gpg keychain on a
> Truecrypt drive might make them both more vulnerable?

"Might," sure, although for modern crypto it's quite unlikely.

Far more likely is a situation where you just don't meet your goals.
For instance, if you encrypt data once with a DES key and then encrypt
it again with a different DES key, you might think this would be 'two
layers' of crypto.  In reality, there is always a third DES key which
will be equivalent to encrypting with the first followed by encrypting
with the second -- it's the real-world analogue of the "ROT3 followed by
ROT5 is just ROT8" example I gave.

The real concern here isn't making the overall system weaker: it's
fooling yourself into thinking you've made the system stronger, when in
reality you probably haven't.





More information about the Gnupg-users mailing list