What encryption use FileVault in HighSierra?

Discussion in 'macOS High Sierra (10.13)' started by cyberblood, Aug 19, 2017.

Tags:
  1. cyberblood macrumors newbie

    cyberblood

    Joined:
    Aug 19, 2017
    #1
    Hi,

    I'd like to know what encryption use FileVault in High Sierra?
    In Sierra it's AES128, I hope they switch to AES256, thanks to the new Apple File System.
     
  2. JoshHarmon macrumors newbie

    Joined:
    Aug 19, 2017
    #2
    Not sure, but I will say a couple of things that I believe are related to your underlying concerns: There's little practical difference between the two. AES-256 really only exists because of bureaucratic BS surrounding the standardization of AES. Additionally, there are known issues with AES-192 and AES-256 that decrease the security level to around AES-128's level.

    The bottom line: just because the number is bigger doesn't necessarily mean you need it. 128-bit AES is _perfectly_ fine.
     
  3. cyberblood thread starter macrumors newbie

    cyberblood

    Joined:
    Aug 19, 2017
  4. BLUEDOG314 macrumors regular

    BLUEDOG314

    Joined:
    Dec 12, 2015
    #4
    The weakest link is going to be your password. The difference is in the number of "rounds" of the AES algorithm data goes through. More rounds will use more cpu time which isn't really an issue anymore with hardware acceleration and speed of modern SSDs. In short, it doesn't matter if you use AES38923490 if your password is a word in the dictionary or your dog's name.
     
  5. kmaute macrumors 6502

    kmaute

    Joined:
    Oct 5, 2008
    Location:
    USA
    #5
    Source? There's a related key attack but that's not really a risk to consider. Consider that the NSA requires 192 or 256 bit key lengths for Top Secret materials. Only Secret materials can use 128. Granted, no one is going to brute force 128 bit AES but the above is not true.
     
  6. BLUEDOG314 macrumors regular

    BLUEDOG314

    Joined:
    Dec 12, 2015
    #6
  7. steve23094 macrumors 68000

    steve23094

    Joined:
    Apr 23, 2013
    #7
    At present, there is no known practical attack that would allow someone without knowledge of the key to read data encrypted by AES when correctly implemented.

    Source:- https://en.m.wikipedia.org/wiki/Advanced_Encryption_Standard

    The article discusses the method you have invoked.
     

Share This Page