Academic Integrity: tutoring, explanations, and feedback — we don’t complete graded work or submit on a student’s behalf.

I use MCRYPT_RIJNDAEL_256 in CBC mode using mcrypt in PHP. This supports key siz

ID: 661917 • Letter: I

Question

I use MCRYPT_RIJNDAEL_256 in CBC mode using mcrypt in PHP. This supports key sizes of 16, 24 or 32.

Is a key size of 32 more secure than a key size of 16 or 24? If it is, does it really matter or is it just a little bit better? And does a larger key noticeably impact performance in this case?

Searching on Google or here on Information Security doesn't help me, I can't find an answer to this question.

My guess is that a longer key is more secure and that it doesn't really affect the performance but I would like a confirmation (preferably along with some sources).

Explanation / Answer

More often, you'll hear key sizes discussed in bits rather than bytes. So, 32 bytes = 256 bits. 16 = 128, 24 = 192.

In theory, yes, longer key lengths are more secure, as there are more permutations of the key possible. Each additional bit means twice as many possible keys, so doubles the amount of time necessary to brute force the key. That being said, physics suggests it's impossible to even brute force 128 bits. So, in reality, situations where 256-bit crypto is being used for one of two reasons: 1) they want additional safety margin if weaknesses (but not a full break) are found in AES, or 2) they want to be able to market it as "256 bit crypto!" In other words, it's often used for the warm-and-fuzzy feeling of "better" crypto.

Way more important than the key length you choose is how you create your key. If your keys are created by a human at a keyboard choosing a password, they're highly unlikely to come up with 128 bits. According to NIST, based on studies of common password practices, a human chosen password would need to be 112 characters long to give 128 bits of entropy. Given that users are unlikely to type 112 characters, your key generation strategy may be the weak point (again, assuming user-generated keys). Consider using something like PBKDF2 to harden user input into keys.

If you're generating the keys, make sure you use a quality source of entropy, like /dev/urandom or openssl_random_pseudo_bytes in PHP. Do not use rand or mt_rand, as those are not cryptographically secure, and are predictable to an attacker.

Related Questions

I understand where 3pi/4 came from, but not 11pi/4 and the numbers after. Where
Question #3398671
I understand x-rays and how they work, but a couple of years ago, my son had a v
Question #47072
I updated it, sorry about that. Is this right? I left 4 and 9 out. My balance sh
Question #2340587
I updated my Mac to Mavericks 10.9.2 earlier this week, I couldn\'t open any MS
Question #3561716
I uploaded a picture with the image and the question. Are you not seeing the pic
Question #1574470
I uploaded image, which is a part of some problems. I want to get the every answ
Question #1309921
I uploaded these questions several times but noone could answer. Please help! 1)
Question #787084
I uploaded these questions several times but noone could answer. Please help! 1)
Question #787085

Navigate

Previous
I use Linux (Fedora, to be specific), and I have a huge problem where my ISP dro
Next
I use Office 365 for Mac , but beforehand I was using Office#2011. I lost my pro