Re: [dsfjdssdfsd] Discussion: Malicious Entropy Attacks: Eggs, and Baskets
=JeffH <Jeff.Hodges@KingsMountain.com> Tue, 11 March 2014 22:19 UTC
Return-Path: <Jeff.Hodges@KingsMountain.com>
X-Original-To: dsfjdssdfsd@ietfa.amsl.com
Delivered-To: dsfjdssdfsd@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 72EEE1A0868 for <dsfjdssdfsd@ietfa.amsl.com>; Tue, 11 Mar 2014 15:19:31 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.231
X-Spam-Level:
X-Spam-Status: No, score=-1.231 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_SORBS_WEB=0.77, SPF_PASS=-0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id c4lBhIXUYrno for <dsfjdssdfsd@ietfa.amsl.com>; Tue, 11 Mar 2014 15:19:30 -0700 (PDT)
Received: from alt-proxy11.mail.unifiedlayer.com (alt-proxy11.mail.unifiedlayer.com [74.220.211.241]) by ietfa.amsl.com (Postfix) with SMTP id 349251A0848 for <dsfjdssdfsd@ietf.org>; Tue, 11 Mar 2014 15:19:30 -0700 (PDT)
Received: (qmail 31663 invoked by uid 0); 11 Mar 2014 22:19:23 -0000
Received: from unknown (HELO box514.bluehost.com) (74.220.219.114) by oproxy16.mail.unifiedlayer.com with SMTP; 11 Mar 2014 22:19:23 -0000
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=kingsmountain.com; s=default; h=Content-Transfer-Encoding:Content-Type:Subject:To:MIME-Version:From:Date:Message-ID; bh=MeWijcxpyLMqhtdtQStumvo1BwKn/qnTwMVSuE9scBs=; b=cPCcPWImm7uZRxLhWVsVY14GUiGRm87Kuo9JaaWZX5/K5E6K4hyID5nTO3M0Ui0nbXbQs2Ybzi4IN5pgl3GiW+tVuxxWqstDVBy33hrly9m4iBm/fsk8eYgg5qAPvesj;
Received: from [216.113.168.128] (port=30230 helo=[10.244.137.220]) by box514.bluehost.com with esmtpsa (TLSv1:CAMELLIA256-SHA:256) (Exim 4.80) (envelope-from <Jeff.Hodges@KingsMountain.com>) id 1WNV19-0001sP-EW for dsfjdssdfsd@ietf.org; Tue, 11 Mar 2014 16:19:23 -0600
Message-ID: <531F8BF8.4020102@KingsMountain.com>
Date: Tue, 11 Mar 2014 15:19:36 -0700
From: =JeffH <Jeff.Hodges@KingsMountain.com>
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:17.0) Gecko/20130330 Thunderbird/17.0.5
MIME-Version: 1.0
To: IETF Pseudorandom Number Generator PRNG discussion list <dsfjdssdfsd@ietf.org>
Content-Type: text/plain; charset="windows-1252"; format="flowed"
Content-Transfer-Encoding: quoted-printable
X-Identified-User: {11025:box514.bluehost.com:kingsmou:kingsmountain.com} {sentby:smtp auth 216.113.168.128 authed with jeff.hodges+kingsmountain.com}
Archived-At: http://mailarchive.ietf.org/arch/msg/dsfjdssdfsd/oRkT43mmorXPGpcli2axpXg4S1g
Subject: Re: [dsfjdssdfsd] Discussion: Malicious Entropy Attacks: Eggs, and Baskets
X-BeenThere: dsfjdssdfsd@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: "The dsfjdssdfsd list provides a venue for discussion of randomness in IETF protocols, for example related to updating RFC 4086." <dsfjdssdfsd.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dsfjdssdfsd>, <mailto:dsfjdssdfsd-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dsfjdssdfsd/>
List-Post: <mailto:dsfjdssdfsd@ietf.org>
List-Help: <mailto:dsfjdssdfsd-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dsfjdssdfsd>, <mailto:dsfjdssdfsd-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 11 Mar 2014 22:19:31 -0000
> Ted noted.. > > I'll note that an criteria for judging RNG's which is very popular > with academics who love to write papers poking (theoretical) holes > into random number generators is how quickly a RNG can recover from > state compromise. > ... > Personally, my take is that if you can compromise the state of the > RNG, you can probably far more damage, so I'm not convinced state > compromise is a very high priority threat to defend against. But > there are tons and tons of academic papers which are convinced that > any RNG which doesn't worry about this attack is Fatally Flawed. a recent paper that is perhaps an instance of the above class(es) of papers (but may be of interest in any case) is... Dodis, Yevgeniy, Adi Shamir, Noah Stephens-Davidowitz, and Daniel Wichs. "How to Eat Your Entropy and Have it Too—Optimal Recovery Strategies for Compromised RNGs." https://eprint.iacr.org/2014/167.pdf =JeffH
- [dsfjdssdfsd] Discussion: Malicious Entropy Attac… Alyssa Rowan
- Re: [dsfjdssdfsd] Discussion: Malicious Entropy A… Dan Brown
- Re: [dsfjdssdfsd] Discussion: Malicious Entropy A… Theodore Ts'o
- Re: [dsfjdssdfsd] Discussion: Malicious Entropy A… =JeffH
- Re: [dsfjdssdfsd] Discussion: Malicious Entropy A… Dan Brown
- Re: [dsfjdssdfsd] Discussion: Malicious Entropy A… Arnold Reinhold
- Re: [dsfjdssdfsd] Discussion: Malicious Entropy A… ianG
- Re: [dsfjdssdfsd] Discussion: Malicious Entropy A… Krisztián Pintér
- Re: [dsfjdssdfsd] Discussion: Malicious Entropy A… Arnold Reinhold
- Re: [dsfjdssdfsd] Discussion: Malicious Entropy A… tytso
- Re: [dsfjdssdfsd] Discussion: Malicious Entropy A… Arnold Reinhold
- Re: [dsfjdssdfsd] Discussion: Malicious Entropy A… tytso
- Re: [dsfjdssdfsd] Discussion: Malicious Entropy A… Arnold Reinhold
- Re: [dsfjdssdfsd] Discussion: Malicious Entropy A… Arnold Reinhold