|
|
 Up |
|
|
  |
Author: Mike McNallyMike McNally
Date: Dec 1, 2006 20:54
I've always wondered if there could be another "dimension" to encryption beyond
the basic two. I forget the name of the famous British double-agent (working with the
British against the Germans) who would use both methods of transposition and
substitution, but then add a third element or "dimension" to the ciphertext:
invisibility... as he would then write the message in invisible ink.
Although the idea of invisible ink today may seem quaint, even childish, as it
relates to computers there may be a way to implement what we might tentatively call
"binary invisibility" as a mathematical function, most likely depending on some
shared, likely secret but also ephemeral, inner workings of the systems on which the
communication is processed.
To create a new "publicly shared information" cryptosystem entirely that is non prime
dependent (i.e. non RSA), I think one must begin by first looking at the nature of
knowledge itself. for example, if I send someone the message:
MEET ME AT FOGGY CREEK BRIDGE AT ONE PM
Then that message is fairly unambiguous. The only real assumption made is that the
recipient knows where Foggy Creek bridge is (there are more, but they are mere
linguistic, trans derivational assumptions and not relevant in this case). If I send
the message:
FOGGY CREEK BRIDGE ONE PM
|
| Show full article (6.02Kb) |
|
| |
1 Comment |
|
|
Author: DougDoug
Date: Dec 1, 2006 20:09
>
> Thaddeus L Olczyk wrote:
>> Can someone recommend hash libraries written in C++. Speed is not the
>> single most important factor but it is important.
>>
>> --------------------------------------------------
>> Thaddeus L. Olczyk, PhD
>> Think twice, code once.
>
> Use google?
>
|
| |
|
| |
no comments
|
|
|
|
|
|
Author: Tom St DenisTom St Denis
Date: Dec 1, 2006 14:23
I've been asked to (and have) write some simple bios verification code
for the OLPC ( laptop.org) project. Essentially, they wanted a simple
tool where they could sign a bios with various algorithms (in case one
dies in the future) and then verify it from the BIOS side (which has no
libc).
I've written the following code
http://libtomcrypt.org/cock.htm
Which is very rough [but functional] initial code that uses LTC and TFM
to perform the crypto (what else?).
The code fits in at around 70KB, and uses 64KB of heap so it's nice and
small (could be smaller I suppose but I do include both RSA and ECC,
Whirlpool and SHA512 in there, as well as an ASN1 library...)
Basically there are two pieces of code. The cli_tool can make keys,
signatures and verify the signatures. The bios_side is a rough stub
for what will be placed in the BIOS (with suitable use of -fPIC for
instance).
The signatures and key formats are ASN.1 encoded (to make porting this
to another library in the future possible if need be). The key format
is basically
|
| Show full article (2.98Kb) |
|
5 Comments |
|
|
Author: karlkarl
Date: Dec 1, 2006 12:54
Does anyone have a good source for HSMs? We currently have ones from
SafeNet (Previously Eracom Tech) but they do not have any APIs that
work with VB.Net.
Any advice on interfacing with a Protect Server Orange from VB.Net or a
recomendation of another HSM would be great!
Thank you
Karl
|
| |
|
5 Comments |
|
|
Author: aliptahaliptah
Date: Dec 1, 2006 12:31
Consider two peers A and B.
B wants to verify the authenticity of every message sent by A.
Then they adopt this scheme:
A keeps a 32bit number c, which is simply incremented by one for each
sent message.
When they establish a connection,
A initialises c to a random number,
A and B exchange their public keys and
A sends c to B. B saves c to d.
A, for every message, increments by one c and appends c' in the
message. c' is
c'=private_encrypt(c+1, A_privk)
B, to verify the authenticity of the received message, will compare
public_decrypt(c', A_pubk) == d+1
If the comparison is true, then the message is authentic and d will be
incremented by one.
|
| Show full article (0.96Kb) |
|
4 Comments |
|
|
Author: Marcus StreetsMarcus Streets
Date: Dec 1, 2006 08:10
Peter Fairbrother wrote:
> Assuming a reasonable computer to start, with some add-on hardware to do
> modexps, does anyone have any idea how many eg 4 kbit full modexps * per
> second could be done if I spent say $1,000 on modexp hardware? $10,000?
> $100,000?
>
>
> Just a rough guide would be most useful, and any suggestions as to actual
> hardware would be most gratefully accepted
>
> Thanks,
>
>
>
|
| Show full article (0.82Kb) |
|
2 Comments |
|
|
Author: Peter FairbrotherPeter Fairbrother
Date: Dec 1, 2006 07:34
Pubkeybreaker wrote:
>
> Peter Fairbrother wrote: Assuming a reasonable computer to start, with some
> add-on hardware to do modexps, does anyone have any idea how many eg 4 kbit
> full modexps * per second could be done if I spent say $1,000 on modexp
> hardware? $10,000? $100,000?
>
>>
>> Just a rough guide would be most useful, and any suggestions as to actual
>> hardware would be most gratefully accepted
>>
> You leave too much undefined to answer your question. What do you mean by
> "reasonable computer"?
A high-end desktop, say a gigE twin opteron/Xeon with 2 GB ram.
> Is the add-on hardware custom designed?
I'd hope not - I was hoping for commercial add-on cards, or perhaps suitable
systems for the more expensive amounts.
|
| Show full article (1.57Kb) |
|
no comments
|
|
|
Author: BRGBRG
Date: Dec 1, 2006 07:20
Peter Fairbrother wrote:
> Assuming a reasonable computer to start, with some add-on hardware to do
> modexps, does anyone have any idea how many eg 4 kbit full modexps * per
> second could be done if I spent say $1,000 on modexp hardware? $10,000?
> $100,000?
>
> Just a rough guide would be most useful, and any suggestions as to actual
> hardware would be most gratefully accepted
|
| |
|
9 Comments |
|
|
|
|
|
|
|
|
|
|
|
|
