IETF Logo Mail Archive

Re: [dsfjdssdfsd] Any plans for drafts or discussions on here?

"Dan Harkins" <dharkins@lounge.org> Fri, 24 January 2014 19:16 UTC

Return-Path: <dharkins@lounge.org>
X-Original-To: dsfjdssdfsd@ietfa.amsl.com
Delivered-To: dsfjdssdfsd@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id CC2151A01A2 for <dsfjdssdfsd@ietfa.amsl.com>; Fri, 24 Jan 2014 11:16:30 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.567
X-Spam-Level:
X-Spam-Status: No, score=-3.567 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, IP_NOT_FRIENDLY=0.334, MIME_8BIT_HEADER=0.3, RCVD_IN_DNSWL_MED=-2.3, SPF_HELO_PASS=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 7R2CdsA3NNIz for <dsfjdssdfsd@ietfa.amsl.com>; Fri, 24 Jan 2014 11:16:29 -0800 (PST)
Received: from colo.trepanning.net (colo.trepanning.net [69.55.226.174]) by ietfa.amsl.com (Postfix) with ESMTP id 92C751A01A7 for <dsfjdssdfsd@ietf.org>; Fri, 24 Jan 2014 11:16:10 -0800 (PST)
Received: from www.trepanning.net (localhost [127.0.0.1]) by colo.trepanning.net (Postfix) with ESMTP id 3CBBAA888012; Fri, 24 Jan 2014 11:16:09 -0800 (PST)
Received: from 69.12.173.8 (SquirrelMail authenticated user dharkins@lounge.org) by www.trepanning.net with HTTP; Fri, 24 Jan 2014 11:16:09 -0800 (PST)
Message-ID: <a885c194e07ca947e5139c528792efa1.squirrel@www.trepanning.net>
In-Reply-To: <1825449796.20140124180225@gmail.com>
References: <52DD996F.3040708@cs.tcd.ie> <CAF4+nEHEWaSr3HMuGtQ=vQzuuhkTo2uNpedUTNgmT5NsWRsTfA@mail.gmail.com> <30316745-8091-46AD-95A1-407757489FF9@vpnc.org> <1737731959.20140122185149@gmail.com> <03f201cf17ee$e34ccbf0$a9e663d0$@hosed.org> <15541579.20140123214020@gmail.com> <00C069FD01E0324C9FFCADF539701DB3BBF18E51@sc9-ex2k10mb1.corp.yaanatech.com> <204592464.20140123233807@gmail.com> <00C069FD01E0324C9FFCADF539701DB3BBF18FD6@sc9-ex2k10mb1.corp.yaanatech.com> <1825449796.20140124180225@gmail.com>
Date: Fri, 24 Jan 2014 11:16:09 -0800
From: Dan Harkins <dharkins@lounge.org>
To: Krisztián Pintér <pinterkr@gmail.com>
User-Agent: SquirrelMail/1.4.14 [SVN]
MIME-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: 8bit
X-Priority: 3 (Normal)
Importance: Normal
Cc: "dsfjdssdfsd@ietf.org" <dsfjdssdfsd@ietf.org>, "ietf@hosed.org" <ietf@hosed.org>, Michael Hammer <michael.hammer@yaanatech.com>
Subject: Re: [dsfjdssdfsd] Any plans for drafts or discussions on here?
X-BeenThere: dsfjdssdfsd@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "The dsfjdssdfsd list provides a venue for discussion of randomness in IETF protocols, for example related to updating RFC 4086." <dsfjdssdfsd.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dsfjdssdfsd>, <mailto:dsfjdssdfsd-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dsfjdssdfsd/>
List-Post: <mailto:dsfjdssdfsd@ietf.org>
List-Help: <mailto:dsfjdssdfsd-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dsfjdssdfsd>, <mailto:dsfjdssdfsd-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 24 Jan 2014 19:16:31 -0000

On Fri, January 24, 2014 9:02 am, Krisztián Pintér wrote:
>
> Michael Hammer (at Friday, January 24, 2014, 12:19:03 AM):
>>
>> Was thinking in terms of how an app with access to alternate random
>> sources,
>> some which might be from OS or from some software, might choose one over
>> another.
>
> if you are adamant on doing homebrewed, why choose? you can combine
> them. if your combinator is good, you can't lose.
              ^^^^^^^^^^^^^^^^^^^^

  Is that all there is to it? This sounds like only the generation function
of a random bit generator. Shouldn't there also be some process that
handles the internal state necessary to do the generation? Shouldn't
that process have certain security properties, for instance allowing the
continued generation of a random bit stream* when an attacker is able
to limit (some of) the input(s) to the "combinator"?

  This is really more like "home distilling"  than "home brewing" in
that if you don't do it right it will kill you instead of just taste bad.
So, on the contrary, I think you definitely can lose.

  Dan.

* random in the sense that to the attacker an n-bit sample appears
uniformly distributed over the entire set of n-bit vectors.

v2.23.0 | Report a Bug | By Email