Rijndael Encryption with SHA256 hash

[Phillip Allan-Harding]

I'm relatively new to cryptography and Crypto++, can someone comment on whether what I want to do sounds "correct" (whatever correct means!)

- I want to encrypt data, that is to be transmitted around the inter/intraNet, using Rijndael

- I want to use a key for the above encryption that is an SHA128/256 hash based on: -
{multiple concatenated string data components} + {a nonce}

Regards,
Phil Allan-Harding.
blue 8
Interchange 25 Business Park
Bostocks Lane, Sandiacre
Nottingham NG10 5QG
+44 (0)115 921 0200

[Michael Monsen]

On Wednesday, April 30, 2003, at 10:34 AM, Phillip Allan-Harding wrote:

> I'm relatively new to cryptography and Crypto++, can someone comment
> on whether what I want to do sounds "correct" (whatever correct > means!)
>
> - I want to encrypt data, that is to be transmitted around the
> inter/intraNet, using Rijndael
>
> - I want to use a key for the above encryption that is an SHA128/256
> hash based on: -
> {multiple concatenated string data components} + {a nonce}

This provides some security, but it would be more useful if you were
to explain what sort of data you're trying to protect and what kinds of
attacks you're trying to prevent. Whether you're concerned about
passive listening attacks vs attacks where packets can be intercepted
and/or modified en route will dictate what type of encryption you
should use, for example.

--
Michael Monsen
There are 10 kinds of people in this world.
Those who understand binary, and those who don't.