Null Key Encryption

November 28th, 2008 — 1 Comment — Permalink

Whilst watching The Dark Knight for the n^th time yesterday, I noticed a subtle bit of geek humour. Towards the end of the film, Batman mentions:

"The database is Null Key Encrypted, it can only be accessed by one person"

That sounds perfectly reasonable, right? Wrong - Null Key Encryption (defined in RFC 2410) is a particularly light form of encryption that does nothing to obfuscate the data - its purpose is to provide the option of providing no encryption where it is mandatory, such as in IPSec ESP which always specifies an encryption type. The authors of RFC 2410 have a bit of fun with this idea in their paper, incorporating trivial maths and test vectors. Nice try - but it doesn't beat RFC 2549.

Discussion

Scott 1 year, 5 months ago

Just watching batman and decided to do a quick google search to see what this was all about :)

Comments on this post have now been closed.

Journal

By Steve Challis

Recent Entries

Archive

RSS/Atom

Home

Projects

@schallis

Null Key Encryption

Discussion