::Crypto is only a small part of security. It in many ways is over exaggerated in its effectiveness.
Well said!! Bruce Schneier has made that point thousands of times!
DES has been around 30+ years and the statement does stand.
Any academic who could have found a major flaw would be a superstar. The fact that no one has found it, internationally, shows how it was secure.
Do you know any large system where this works?
The big gotcha is that of all the programs you run, you can only code a tiny % of them. And you can’t audit everything else.
Bruce Scheneir wrote in his latest newsletter:
The NSA is Not Made of Magic
https://www.schneier.com/crypt...
Details of his below...but the point is...there is no conspiracy...DES worked when it was long enough.
I am regularly asked what is the most surprising thing about the Snowden NSA documents. It's this: the NSA is not made of magic. Its tools are no different from what we have in our world, it's just better-funded. X-KEYSCORE is Bro plus memory. FOXACID is Metasploit with a budget. QUANTUM is AirPwn with a seriously privileged position on the backbone. The NSA breaks crypto not with super-secret cryptanalysis, but by using standard hacking tricks such as exploiting weak implementations and default keys. Its TAO implants are straightforward enhancements of attack tools developed by researchers, academics, and hackers; you can buy a computer the size of a grain of rice, if you want to make your own such tools. The NSA's collection and analysis tools are basically what you'd expect if you thought about it for a while.
That, fundamentally, is surprising. If you gave a super-secret Internet exploitation organization $10 billion annually, you'd expect some magic. And my guess is that there is some, around the edges, that has not become public yet. But that we haven't seen any yet is cause for optimism.
Vaccines saves lives. They have saved hundreds of millions of lives.
Are there risks? Hell yes!
But we are taking about 1 in 100,000.
Why are there so many deaths in Africa? Cuz there ain’t no vaccines.
Repeat after me: Vaccines saves lives
Vaccines saves lives
Vaccines saves lives
Vaccines saves lives
Is it me or is there a cult of Steve Jobs?
He was brilliant. Nut he did not build Apple alone. 1 brilliant Steve Jobs required a lot of smart engineers.
Tim Cook knows that, but no one is worshiping him.
Slashdot Mirror
I have a copy. Microsoft is playing catchup....and very quickly.
::Crypto is only a small part of security. It in many ways is over exaggerated in its effectiveness. Well said!! Bruce Schneier has made that point thousands of times!
::if you can't audit 7mb of code you're retarded And if you can't reply without an insult....
:::We can start moving towards literally unbreakable security. Aside from 1-time pads...what u referring to?
A slight dip does not mean failure.
Same org...different standard.
DES has been around 30+ years and the statement does stand. Any academic who could have found a major flaw would be a superstar. The fact that no one has found it, internationally, shows how it was secure.
Do you know any large system where this works? The big gotcha is that of all the programs you run, you can only code a tiny % of them. And you can’t audit everything else.
Bruce Scheneir wrote in his latest newsletter: The NSA is Not Made of Magic https://www.schneier.com/crypt... Details of his below...but the point is...there is no conspiracy...DES worked when it was long enough. I am regularly asked what is the most surprising thing about the Snowden NSA documents. It's this: the NSA is not made of magic. Its tools are no different from what we have in our world, it's just better-funded. X-KEYSCORE is Bro plus memory. FOXACID is Metasploit with a budget. QUANTUM is AirPwn with a seriously privileged position on the backbone. The NSA breaks crypto not with super-secret cryptanalysis, but by using standard hacking tricks such as exploiting weak implementations and default keys. Its TAO implants are straightforward enhancements of attack tools developed by researchers, academics, and hackers; you can buy a computer the size of a grain of rice, if you want to make your own such tools. The NSA's collection and analysis tools are basically what you'd expect if you thought about it for a while. That, fundamentally, is surprising. If you gave a super-secret Internet exploitation organization $10 billion annually, you'd expect some magic. And my guess is that there is some, around the edges, that has not become public yet. But that we haven't seen any yet is cause for optimism.
The best way to take the Sting Out of Battlefield... Don't go into battles you can't win. Say: Iraq.
Vaccines saves lives. They have saved hundreds of millions of lives. Are there risks? Hell yes! But we are taking about 1 in 100,000. Why are there so many deaths in Africa? Cuz there ain’t no vaccines. Repeat after me: Vaccines saves lives Vaccines saves lives Vaccines saves lives Vaccines saves lives
Is it me or is there a cult of Steve Jobs? He was brilliant. Nut he did not build Apple alone. 1 brilliant Steve Jobs required a lot of smart engineers. Tim Cook knows that, but no one is worshiping him.