Isn't a password a form of security through obscurity?

后端 未结 8 1306
臣服心动
臣服心动 2021-02-05 03:24

I know that security through obscurity is frowned upon and considered not really secure, but isn\'t a password security through obscurity? It\'s only secure so long as no one f

8条回答
  •  轻奢々
    轻奢々 (楼主)
    2021-02-05 04:04

    Maybe it's easier to understand what Security-by-Obscurity is about, by looking at something that is in some sense the opposite: Auguste Kerckhoffs's Second Principle (now simply known usually as Kerckhoffs's Principle), formulated in 1883 in two articles on La Cryptographie Militaire:

    [The cipher] must not be required to be secret, and it must be able to fall into the hands of the enemy without inconvenience.

    Claude Shannon reformulated it as:

    The enemy knows the system.

    And Eric Raymond as:

    Any security software design that doesn't assume the enemy possesses the source code is already untrustworthy.

    An alternative formulation of that principle is that

    The security of the system must depend only of the secrecy of the key, not the secrecy of the system.

    So, we can simply define Security-by-Obscurity to be any system that does not follow that principle, and thus we cleverly out-defined the password :-)

    There are two basic reasons why this Principle makes sense:

    1. Keys tend to be much smaller than systems, therefore they are easier to protect.
    2. Compromising the secrecy of a key only compromises the secrecy of all communications protected by that key, compromising the secrecy of the system compromises all communications.

    Note that it doesn't say anywhere that you can't keep your system secret. It just says you shouldn't depend on it. You may use Security-by-Obscurity as an additional line of defense, you just shouldn't assume that it actually works.

    In general, however, cryptography is hard, and cryptographic systems are complex, therefore you pretty much need to publish it, to get as many eyeballs on it as possible. There are only very few organizations on this planet that actually have the necessary smart people to design cryptographic systems in secrecy: in the past, when mathematicians were patriots and governments were rich, those were the NSA and the KGB, right now it's IBM and a couple of years from now it's gonna be the Chinese Secret Service and international crime syndicates.

提交回复
热议问题