i have a question about this post where answer is present:
PHP + Android XML Encryption/Decryption
is this rijndael encryption algorithm ? or an innovative one ?
if it is innovative , then how much reliable it is ?
thanks
Asked
Modified
11 years, 5 months ago
Viewed
183 times
Part
of PHP and Mobile Development Collectives
-
As a general rule, never use any encryption method that isn't well known. If you don't have a phd in math you aren't close to qualified to analyze it. Just download an encryption library and use it, don't write anything yourself.Gabe Sechan– Gabe Sechan2014-06-15 07:33:32 +00:00Commented Jun 15, 2014 at 7:33
-
where can i find encryption library and tutorial to how to use them on android and php ?user3730682– user37306822014-06-15 07:51:18 +00:00Commented Jun 15, 2014 at 7:51
-
@GabeSechan a PhD in Maths does not imply any knowledge of cryptography (see those PhDs in Maths who wrote Telegram protocol and failed sooo hard).Stefano Sanfilippo– Stefano Sanfilippo2014-06-15 07:51:39 +00:00Commented Jun 15, 2014 at 7:51
-
@StefanoSanfilippo True, consider it a (nearly) necessary but not sufficient qualification. If you have to come to this website to ask about encryption, you need to be using a well known library- you aren't qualified to work on one yourself.Gabe Sechan– Gabe Sechan2014-06-15 16:05:06 +00:00Commented Jun 15, 2014 at 16:05
Add a comment
|
1 Answer
Yes, that's AES (Rijndael) 128 used in CBC mode -- a good choice (not the best, still good).
However, that is not encryption at all, because the key is hardcoded inside the program. I would call it obfuscation. In fact, you can hide the hardcoded key as much as you want, but be assured that someone with enough determination will find it.
