[cryptography] [liberationtech] Heml.is - "The Beautiful & Secure Messenger"

Noon Silk noonslists at gmail.com
Sat Jul 13 02:43:23 EDT 2013


On Sat, Jul 13, 2013 at 4:32 PM, Peter Gutmann <pgut001 at cs.auckland.ac.nz>
wrote:
>
> William Yager <will.yager at gmail.com> writes:
>
> >no cryptographer ever got hurt by being too paranoid, and not trusting
your
> >hardware is a great place to start.
>
> And while you're lying awake at night worrying whether the Men in Black
have
> backdoored the CPU in your laptop, you're missing the fact that the
software
> that's using the random numbers has 36 different buffer overflows, of
which 27
> are remote-exploitable, and the crypto uses an RSA exponent of 1 and
AES-CTR
> with a fixed IV.

A good point, of course. So what should everyone do?


> Peter.

--
Noon Silk
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.randombit.net/pipermail/cryptography/attachments/20130713/2240cce3/attachment-0001.html>


More information about the cryptography mailing list