0
Is it possible to encrypt encrypted data, using multiple programs so that in order to decrypt you would need both programs? Not really sure if this is possible but just wondering if it was a thing and if it is practical if the data doesn't need to be used often.
Playjoy
Posted 2017-03-01T00:36:29.103
Reputation: 11
1
Is it possible to encrypt encrypted data ..
Yes, in fact, chances are there are multiple layers of encryption on the socket you're using to view this web page.
A lot of different file/disk encryption programs even ask if you'd like to encrypt your data using multiple algorithms (e.g. using AES-256 followed by Blowfish, or some other algorithm).
When you encrypt something using multiple layers of encryption, it's not that you need different programs to decrypt, just that the program you're using to decrypt can properly decrypt the algorithm used at each layer, and more importantly that you select the correct order of algorithms when decrypting.
I was also wondering if encrypting it again would make it almost uncrackable, or if it would be the same as normal encryption
To this; no encryption is completely "uncrackable". Even AES has a known vector of attack, but more specifically, it's about entropy, or how long it will take to brute force the password, and knowledge of the algorithm used.
If I know that a file was encrypted using one of the DES algorithms, I could probably throw together a small beowulf cluster and brute force the password relatively shortly (within a few weeks or less). If I were to receive the same file but had no clue what algorithm was used (DES/AES/Blowfish/etc.), then more investigation would have to occur before I could attempt to crack it properly (or I could throw it to the various "crackers" while I'm investigating, knowing that it might be a waste of computational time).
Certain algorithms are known to have attack vectors that shorten the brute force time (like collisions, etc.), and thus are less secure than others, so knowledge of what container/algorithm was used shortens the time to brute force the encryption.
With that, if you were to encrypt a file with different algorithms, this just increases the time it would take to brute force the file. Mind you, if you use weak encryption for all levels, "time" is a relative term.
In the end, it just like picking a lock:
How much time am I willing to invest in picking the lock?
Is what's behind the door that valuable as to warrant me spending that time on picking the lock?
Is what's behind the door that valuable as to risk being caught during the time it takes to pick the lock?
If someone else has something of value behind a less secure door, chances are I'll go for that door over yours.
Hope that can help.
txtechhelp
Posted 2017-03-01T00:36:29.103
Reputation: 3 317
2Agreed, but I'll add that it's possible for encryption systems that aren't independent of each other can interact in bad ways. The most obvious example is that if you use the same password for a strong encryption system and a weak one, someone could break the password in the weak system then use that to directly decrypt the strong system. – Gordon Davisson – 2017-03-01T03:30:41.627
The reason you are using encryption actually matters. If you are attempting to protect your data, from the situation where the drive is lost, encryption will provide a certain level of insurance, that your data cannot be accessed. Encryption on the other hand, cannot protect you from data theft, by people who alread have access to your data. Additionally, if you are attempting to protect your data from say the government who typically has unlimited resources, that encryption will only protect your data to a certain point. As proven by recent federal court cases and encrypted iphones – Ramhound – 2017-03-01T15:15:31.543
1Yes; Of course it is. What problem are you trying to solved by encrypting already encrypted data? – Ramhound – 2017-03-01T00:38:38.777
Not really any personal problems, but was curious as to whether it was possible to see if it could be another layer of defense for sensitive information. (Eg. Secret formula could be encrypted multiple times). I was also wondering if encrypting it again would make it almost uncrackable, or if it would be the same as normal encryption. – Playjoy – 2017-03-01T00:45:23.820
No; Encrypting your data multiple times doesn't make it uncrackable – Ramhound – 2017-03-01T00:49:07.733