nist.gov · Domains · Slashdot Mirror

Re:Why do we have all these custom PRNGs? by INT_QRK · 2014-03-14 04:34 · Score: 2 · on Weak Apple PRNG Threatens iOS Exploit Mitigations

spot on...specifically FIPS Pub 140-2 Annex C (draft) "Approved Random Number Generators" which can be found at http://csrc.nist.gov/publicati...

Re:Depends on what they are doing by Defenestrar · 2014-03-07 06:12 · Score: 1 · on Estimate: Academic Labs 11 Times More Dangerous Than Industrial Counterparts

Nah - there's a process called a hazard analysis that should reveal the potential hazards of what somebody is doing. Why these aren't performed at an academic institution is a separate problem. The problem in academic institutions which doesn't exist in either corporate or government research labs is a lack of line management responsibility. The university culture generally allows for throwing a professor (or even a department) under the bus when something goes wrong and OSHA has allowed them to get away with it. In other areas it's been pretty clearly demonstrated that line management is responsible for safety.

For example look at NIST Boulder's plutonium incident - the director of the entire facility is who lost the job because it was his responsibility to have a lab safety program that was sufficient and effective. What is only just starting to wake up academic institutions is the fatal UCLA lab fire which the university was able to plead out of criminal charges, but the professor in charge has not. While the university had some pretty stiff penalties as part of the plea bargain - all of the accountability has come down on the professor and not the university management chain (i.e. with the criminal charges against the university, it should have landed at least at the VP level). I don't think universities will actually foster a safety culture until core administration accepts that the responsibility for doing so is theirs - and this is not likely to happen as long as a professor can be thrown under the bus (whether or not he or she deserves it) and administration escapes major personal (as opposed to institutional) penalties.

NIST by Mr10001 · 2014-03-06 10:29 · Score: 1 · on Ask Slashdot: Does Your Employer Perform HTTPS MITM Attacks On Employees?

NIST 800-53 rev. 4 discusses this topic, so it seems like it's going to become more common. http://nvlpubs.nist.gov/nistpu...

Re:welcome to the big time by WaffleMonster · 2014-03-05 05:23 · Score: 1 · on F-Secure: Android Accounted For 97% of All Mobile Malware In 2013

You do know we're talking about Google, right? Why would Google not have those kinds of resources?

Nobody does, humanity lacks the tools necessary to accomplish this feat in general purpose software.

They scan the Internet every day, upload an hour of video every second, filter spam for hundreds of millions - better than anybody, and they made Android so they have the inside track on detecting undesirable code.

Then why has Google not used this mythical capability to plug all the security leaks in their own Android operating system? A quick search shows hundreds of documented failures.

http://web.nvd.nist.gov/

Even my Google search results - the core competency that makes google google still contain as much useless garbage spam as ever.

These two things are unrelated.

Try explaining this to victims of a premium SMS scam.

Now you seem to be saying you're complaining about Android security because others complain about the security of your preferred system.

I think all of the major mobile platforms profit from selling out and treating the user like shit. I dislike them all.

That is not relevant. Also, it's a confession that your argument lacks merit. Maybe not the direction you wanted to go.

Why is it not relevant? What part of my argument lacks merit?

Now we are talking about a totally different thing - apps which require excessive permissions. As in, the end user gets to decide how much access he is willing to give each application. This is not malware at all and off topic for the discussion, but let's cover it.

Since when is Malware only defined as malware as long as it executes as root? An app that uploads all of my contacts to a criminal organization or participates in a premium dialing/SMS scam WITHOUT any root privileges **IS** malware to me and anyone effected by it.

The distinction of TFA is what is irrelevant. All that matters is what is actually happening in the real world not technical distinctions which most users do not understand.

This is restraining applications that want to be more than the end user wants them to be, giving the end user full disclosure when an update seeks to do things it didn't do before. You make it sound like a bad thing,

It is a proven failure. You can "inform" users and feel well they were warned and it is out of your hands all you want. "Full disclosure" as a security model is the same thing as clicking "I Accept" on the EULA without reading it. Users don't have a real choice to control what an application does they have a binary decision .. an ultimatum either you let me do this or you don't get shit. This model in the real world is a failure.

when in fact it's an enhancement above the other methods of application security provided by the system that empowers the user to be more restrictive than any algorithm could appropriately be. You make it sound like a bad thing. It's not.

All that is needed are user controlled options when installing an app the OS should ask you to pick from a menu of permissions or create a custom profile for that app. It should NOT present the user with an ultimatum.

I install a flashlight app and it does not get any I/O access to any network, touch the filesystem, access my GPS location..etc. The operating system should go as far as having the capability to lie convincingly to the application if requested by the user.

The "bad thing" occurs when the OS vendor has a vested interest in the app environment and ad revenues. Protecting the user is subjugated to making App vendors happy.

Finally: Forcing Researchers to Standard Data by fygment · 2014-02-26 01:34 · Score: 1 · on Major Scientific Journal Publisher Requires Public Access To Data

Rather than publishing on proprietary data of uncertain characteristics, this will essentially force researchers to use common, known, and available data sets. A smattering of what's available and reputable:

http://www.itl.nist.gov/div898...
http://www.keypress.com/x2814....
http://lib.stat.cmu.edu/DASL/
http://www.statsci.org/dataset...
http://data.gc.ca/eng/facts-an...
http://library.med.cornell.edu...

link between mass value and avogadro's constant by lkcl · 2014-02-20 03:48 · Score: 0 · on Scientists Calculate Most Precise Measurement of Electron's Mass

well... this is puzzling. i tried converting the value reported to MeV and accidentally divided by the atomic units constant 9.109 382 91 x 10-31 instead. what i got shocked the hell out of me: 1000x avogadro's constant. according to reports here http://phys.org/news/2014-02-p... the value is 0.000548579909067 atomic mass units. if however you divide that by the atomic unit of mass reported here http://physics.nist.gov/cgi-bi...|search_for=atomic+mass+unit you get, to 6 decimal places, avogadro's constant times 1,000.

i am... very very startled! the implications are that there is some sort of link between the mass of the electron and (if you look up the definition of 1 mole on wikipedia) the number of atoms in 12 kg of carbon. which is.... incredibly odd.

i don't think it's a systemic error, because the original experiment's value agrees with that of other measurements that have been made of the electron's mass. what it would mean is that there appears to genuinely be a link between the mass of the electron and avogadro's constant.

Re:non-fiction by rcjhawk · 2014-01-01 12:47 · Score: 1 · on Ask Slashdot: What Are the Books Everyone Should Read?

Formulas? You want Formulas?
http://people.math.sfu.ca/~cbm/aands/toc.htm

This version has the naughty bits:
http://apps.nrbook.com/abramowitz_and_stegun/index.html

And here's the Revised Standard Version:
http://dlmf.nist.gov/

This story refers to NIST SP 800-147 by Old+time+hacker · 2013-12-17 03:38 · Score: 1 · on NSA Says It Foiled Plot To Destroy US Economy Through Malware

The NSA has been involved with NIST and industry to produce a series of NIST Special Publications ( http://csrc.nist.gov/publications/PubsSPs.html ) which include BIOS security. This includes 800-147, 800-147B, 800-155, 800-164 etc.

I have no idea how many manufacturers implement these -- but there are some really gnarly issues there. It isn't even clear what BIOS means in the context of a blade server with multiple processors, management engines etc.

The TL;DR for these specs is that a BIOS update should not be accepted by the system if it is not signed by the BIOS manufacturer. This is a step in the right direction. Of course, it doesn't protect you from someone with access to the BIOS signing keys for a particular BIOS vendor (and there aren't many BIOS vendors around). I don't think that if 800-147 is implemented that it makes anything easier for the NSA, except that it might engender a false sense of security.

Re:That is what we need to terraform Mars! by Geoffrey.landis · 2013-12-12 03:51 · Score: 4, Informative · on Newly Discovered Greenhouse Gas Is 7,000 Times More Powerful Than CO2

That is exactly what we need to terraform Mars! We need to send few tonnes of this stuff to Mars....

A lot more than a "few tonnes", I'm afraid. I'll also point out that the formula for this is C12F27N-- it has a molecular mass of 671-- that's fifteen times more massive than carbon dioxide molecules. So, per unit MASS it's only 460 times more powerful an infrared absorber than carbon dioxide.

SF6 is a better infrared-trapping greenhouse gas for Mars.

Chemical info here, by the way: http://webbook.nist.gov/cgi/cbook.cgi?ID=C311897

http://www.sigmaaldrich.com/content/dam/sigma-aldrich/structure1/050/mfcd00000436.eps/_jcr_content/renditions/large.png

Protecting Border Gateway Protocol by Anonymous Coward · 2013-11-23 13:12 · Score: 0 · on Route-Injection Attacks Detouring Internet Traffic

"Administrators must understand many important aspects of BGP as a protocol to assess where it may be susceptible to various forms of attack and where it must be protected .. administrators must mitigate the risk and potential impact of associated exploit attempts link

"This document introduces the Border Gateway Protocol (BGP), explains its importance to ... and provides a set of best practices that can help in protecting BGP." link

Re:Heat related? by barlevg · 2013-11-22 05:12 · Score: 3, Informative · on Elevation Plays a Role In Memory Error Rates

Back-of-the-envelope calculation using XCOM.

Assume server rack and contents are made of aluminum (what is the predominant material in a server rack?). Let's say the server rack is 2m in height, but it's not fair to make the whole thing metal. Let's say 20% of it is metal (aluminum for this calculation), the rest is air (or, for the sake of calculation, vacuum). Alumnium has a density of 2g / cm^3 (so a 1m x 1m x 0.4 m slab of alumnium would weigh 800 kg, which appears to be in the middling range for what a server rack can accomodate--again, keep in mind, this is a really rough calculation).

Okay, plugging in Aluminum into XCOM gives a total attenuation in the 100-1k MeV range of ~0.03 cm^2/g.

e^[-(0.03 cm^2/g) * (2g / cm^3) * 40 cm] = 0.09

In other words, that's 90% attenuation. Keep in mind that this was a ridiculously sloppy calculation, with my material assumptions (and possibly energetic ranges) being way off (also, neutron cross-sections could easily be different than photon cross-sections). The point is, it's certainly possible (nay, likely) that the material of the servers themselves are providing shielding from the servers on the bottom of the rack.

Re:Strange advice by GODISNOWHERE · 2013-11-06 05:49 · Score: 1 · on Stolen Adobe Passwords Were Encrypted, Not Hashed

Recently, cryptanalysts have found collisions on the MD4, MD5, and SHA– 0 algorithms; moreover, a method for finding SHA–1 collisions with less than the expected amount of work has been published, although at this time SHA– 1 collisions have not yet been demonstrated. Although there is no specific reason to believe that a practical attack on any of the SHA–2 family of hash functions is imminent, a successful collision attack on an algorithm in the SHA–2 family could have catastrophic effects for digital signatures. NIST has decided that it is prudent to develop a new hash algorithm to augment and revise FIPS 180–2. The new hash algorithm will be referred to as ‘‘SHA–3’’

This was published in 2007. My joke was about the general uneasiness in the community about SHA-2, even if it hasn't been broken yet. Unfortunately, it seems that the members of \. who responded to me were too thick to understand this. You could have just pointed out that SHA-2 hasn't been broken yet. Instead you evinced your lack of ability to make clever insults.

...you dolt...You're clearly an ignorant fuck.

If you use the word "dolt" in conversation in a non-facetious manner it means that you're either a horribly self-conscious member of the middle class who is afraid of appearing "unprofessional", or a dummkopf who hasn't learned that using "dolt" is a shibboleth of immaturity. If you're going to call someone a motherfucker, as any other confident fellow with an iota of social intelligence would, please do it at the outset. Your prose will have a more even tone and you won't be downmodded for flaimbaiting.

FIPS 46 in 1977, IBM before that. I crack, try it by raymorris · 2013-11-05 15:16 · Score: 1 · on Stolen Adobe Passwords Were Encrypted, Not Hashed

It sounds like you saw my correction. I typed 3DES when I meant DES, so I'll reply to your comments DES.

> DES doesn't go back nearly as far as 1972. (nor does DES for that matter)

Below is the official NIST paper describing DES. You'll note that after a four year approval process, DES officially became a government standard in 1977. As described in the paper, IBM was using it by 1974 after it was developed in the years prior.

http://nvl.nist.gov/pub/nistpubs/sp958-lide/250-253.pdf

You could reasonably choose any year between 1972-1977 as the beginning of DES usage, so you're mistaken about "not nearly as far back as 1972, sorry.

> rather a large number of milliseconds

Try cracking a password database sometime. I do this stuff for a living. The larger the database, the faster you'll get working passwords, so we'll give you the benefit of the doubt and use a fairly small database of only 1,000 accounts as an example. We'll also be generous to you and not use a rainbow table. With a small (difficult) database like that, you can expect to get maybe 12 passwords in the first second or two. In the first ten minutes, probably 250 working accounts.

A 100X larger database will yield roughly 100X as many passwords per time - around 1,000 working accounts in the first few seconds, or 2-3ms per account at first.

If we want to go fast, we use a rainbow table. Standard DES password hashing ala crypt() collides at about 1:1000 since it uses only the first eight characters. On modern PCs with GBs of RAM, we can use in-memory tables and crack millions per second. No need for that, though, I don't mind waiting several milliseconds.

Re:Well.. by TechyImmigrant · 2013-10-23 08:16 · Score: 1 · on ACA Health Exchange Contractors Have History of Security Failures

Basically anythin calling itself a guidline or framework. Some of the 'security recommendations' are also mush.
There are plenty of clear documents, but there are a lot more that are mushy

http://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-130.pdf
http://csrc.nist.gov/publications/nistpubs/800-144/SP800-144.pdf
http://csrc.nist.gov/publications/PubsDrafts.html#SP-800-161
http://csrc.nist.gov/publications/PubsDrafts.html#SP-800-162
http://csrc.nist.gov/publications/fips/fips140-2/fips1402.pdf
http://csrc.nist.gov/publications/fips/fips190/fip190.txt
http://csrc.nist.gov/publications/fips/fips201-1/FIPS-201-1-chng1.pdf