How can we add more security when we are writing a security program?( If we are not expert :) )
Think that your rival(attacker,intruder) is able to decrypt RSA or AES in an acceptable time.
Then we have to think on our flown,algorithms.
There are lots of things one can do. I will state some of them.
1) Adding garbage data
Poisson network, disk and database with random garbage data.
2)Partition files
Files are usually encrypted Symmetric. (Asymmetric is so slow for file encryption)
So at the last stage of flow, attacker is left with Symmetric decryption.
What we can do is partition files and encrypt each with Symmetric to
spend more time on file decryption.
3)File entropy
File entropy is randomness in a file.
This is useful in predicting patterns in a file.
One practice about this :
Steganography : concealing file in another file.
We were keeping chunked files in server which were all parts of o file.
We encrypted random parts with Asymmetric .
We made uniform entropy chunks .
*Define a target entropy.
*Calculate file entropy
*Add necessary (distribute over file) data to balance of each chunk.
