gubatron wrote:Scott1x, did you see the demonstration for Google Compute Engine and how fast it can compute with nearly 1 million cores?
If that's what they're going to be leasing to the public, I cannot imagine what some organizations with a lot of power already have to brute force whatever encryption we think is too strong.
Yes, I HAVE seen it and there are those that are actually more powerful. In many cases, it is not that it is impossible to crack a password, it really isn't, but it can be made to take so long and be so difficult, and require so many resources that is is simply NOT worth the effort or practical to accomplish. I have areas of my disk that are triple encrypted with 2048 bits of hash seed. There is NO KNOWN way to crack that. Okay, it could be discovered tomorrow, but for the moment, it is SECURE!
A password that takes a few centuries to crack and tera-tera byte drives to store the hashes is, for all practical purposes, secure.
We can never be safe, but we CAN be safer.
Many, even most, compromises are probably due to social engineering, not due to super computing cracking. So, KEEP IT SECRET!