[Boards: 3 / a / aco / adv / an / asp / b / bant / biz / c / can / cgl / ck / cm / co / cock / d / diy / e / fa / fap / fit / fitlit / g / gd / gif / h / hc / his / hm / hr / i / ic / int / jp / k / lgbt / lit / m / mlp / mlpol / mo / mtv / mu / n / news / o / out / outsoc / p / po / pol / qa / qst / r / r9k / s / s4s / sci / soc / sp / spa / t / tg / toy / trash / trv / tv / u / v / vg / vint / vip / vp / vr / w / wg / wsg / wsr / x / y ] [Search | Free Show | Home]

How should I configure my database? Chacha20 vs AES? Argon2

This is a blue board which means that it's for everybody (Safe For Work content only). If you see any adult content, please report it.
  1. Home
  2. /g/ - Technology
  3. How should I configure my database? Chacha20 vs AES? Argon2
Thread replies: 12
Thread images: 2

Anonymous
2017-01-25 03:01:04 Post No. 58642379
[Report] Image search: [Google]
File: keepass_512x512.png (36KB, 512x512px) Image search: [Google]
keepass_512x512.png
36KB, 512x512px
Anonymous 2017-01-25 03:01:04 Post No. 58642379 [Report]
How should I configure my database?

Chacha20 vs AES?

Argon2 vs AES-KDF?

Or does it not matter?
>>
Anonymous 2017-01-25 03:01:54 Post No.58642388
[Report]
Anonymous 2017-01-25 03:01:54 Post No.58642388 [Report]
Whatever is the default

First one sounds good
>>
Anonymous 2017-01-25 03:03:51 Post No.58642413
[Report] Image search: [Google]
Anonymous 2017-01-25 03:03:51 Post No.58642413 [Report]
File: 501549144.jpg (108KB, 509x338px) Image search: [Google]
501549144.jpg
108KB, 509x338px
doesnt matter, its the same to me.... kid
>>
Anonymous 2017-01-25 08:03:11 Post No.58644923
[Report]
Anonymous 2017-01-25 08:03:11 Post No.58644923 [Report]
Argon2 for GPU attacks.
>>
Anonymous 2017-01-25 08:39:42 Post No.58645134
[Report]
Anonymous 2017-01-25 08:39:42 Post No.58645134 [Report]
>>58642379
What will be in your db that you need full encryption? Do you store cp in your db? Why dont you store only passwords as hashed salt like everybody else?
>>
Anonymous 2017-01-25 09:51:55 Post No.58645633
[Report]
Anonymous 2017-01-25 09:51:55 Post No.58645633 [Report]
>>58645134
Fuck off NSA shill
>>
Anonymous 2017-01-25 11:30:08 Post No.58646352
[Report]
Anonymous 2017-01-25 11:30:08 Post No.58646352 [Report]
>>58642379
AES if you have hardware hardware acceleration like AES-NI (you probably do), Chacha20 otherwise. Argon2 if you will be using your database ONLY with Keepass (KeepassX doesn't support KDBX 4 yet), AES-KDF otherwise.
>>
Anonymous 2017-01-25 11:37:05 Post No.58646401
[Report]
Anonymous 2017-01-25 11:37:05 Post No.58646401 [Report]
>>58645134
Why don't you shit with the door open?
>>
Anonymous 2017-01-25 11:53:57 Post No.58646512
[Report]
Anonymous 2017-01-25 11:53:57 Post No.58646512 [Report]
>>58646352
I highly doubt that keepass even takes advantage of aes-ni
>>
Anonymous 2017-01-25 11:55:43 Post No.58646525
[Report]
Anonymous 2017-01-25 11:55:43 Post No.58646525 [Report]
>>58642379
Don't use Argon2, it's too new to be trusted. Use scrypt instead.
>>
Anonymous 2017-01-25 01:13:40 Post No.58647090
[Report]
Anonymous 2017-01-25 01:13:40 Post No.58647090 [Report]
>>58645633
>>58646401
So what exactly encrypted db does?
Intern people still have the access with keys otherwise they wouldnt be able to do their work. So it wont protect you against snowman accidents.

Your production server still have keys to it, otherwise it wouldnt work. So if breach happens at level of sql execute, your data leaks anyway. If breach happens at greater levels, you can extract keys from production server (or most likely just copy configs with keys) and grab whole db as well.

If swat breaks your server room, you need full hdd encryption to slow them. If only your db is encrypted, the chances of them recovering keys are very real. So again no advantage there.

Only if the attacker is dumb and simply copy your server's hdd or steal it. But then again hdd encryption does the same job, but faster without additional hassle with deploying product.
>>
Anonymous 2017-01-25 02:13:51 Post No.58647637
[Report]
Anonymous 2017-01-25 02:13:51 Post No.58647637 [Report]
>>58646525
>too new to be trusted
>use scrypt
First of all, scrypt isn't a veteran itself.
In fact, Password Hashing Competition was held to develop an improved KDF. There were 24 submissions and Argon2 came out on top. The panel consisted of respected cryptographers including the author of scrypt so there's no reason not to trust Argon2. I think it's the opposite: Argon2 should be used more so it gains recognition, recieves public cryptanalisis and in case there are any issues they get fixed.

Not to mention the fact that Keepass doesn't offer scrypt so it's either AES-KDF or Argon2.
Thread posts: 12
Thread images: 2
[Boards: 3 / a / aco / adv / an / asp / b / bant / biz / c / can / cgl / ck / cm / co / cock / d / diy / e / fa / fap / fit / fitlit / g / gd / gif / h / hc / his / hm / hr / i / ic / int / jp / k / lgbt / lit / m / mlp / mlpol / mo / mtv / mu / n / news / o / out / outsoc / p / po / pol / qa / qst / r / r9k / s / s4s / sci / soc / sp / spa / t / tg / toy / trash / trv / tv / u / v / vg / vint / vip / vp / vr / w / wg / wsg / wsr / x / y] [Search | Top | Home]

I'm aware that Imgur.com will stop allowing adult images since 15th of May. I'm taking actions to backup as much data as possible.
Read more on this topic here - https://archived.moe/talk/thread/1694/


If you need a post removed click on it's [Report] button and follow the instruction.
DMCA Content Takedown via dmca.com
All images are hosted on imgur.com.
If you like this website please support us by donating with Bitcoins at 16mKtbZiwW52BLkibtCr8jUg2KVUMTxVQ5
All trademarks and copyrights on this page are owned by their respective parties.
Images uploaded are the responsibility of the Poster. Comments are owned by the Poster.
This is a 4chan archive - all of the content originated from that site.
This means that RandomArchive shows their content, archived.
If you need information for a Poster - contact them.