jdev - 2022-04-28

  1. lovetox has joined
  2. thomaslewis has left
  3. lovetox has left
  4. thomaslewis has joined
  5. thomaslewis has left
  6. thomaslewis has joined
  7. thomaslewis has left
  8. Ingolf has joined
  9. Ingolf has left
  10. nephele has joined
  11. dezant has left
  12. Ingolf has joined
  13. thomaslewis has joined
  14. thomaslewis has left
  15. nephele has left
  16. thomaslewis has joined
  17. thomaslewis has left
  18. lovetox has joined
  19. raghavgururajan has joined
  20. xnamed has left
  21. PapaTutuWawa has left
  22. Millesimus has left
  23. Sam has left
  24. Millesimus has joined
  25. al has left
  26. al has joined
  27. Sam has joined
  28. dezant has joined
  29. Yagizа has joined
  30. Millesimus has left
  31. Millesimus has joined
  32. Ingolf has left
  33. spectrum has left
  34. xecks has left
  35. lovetox has left
  36. raghavgururajan has left
  37. jgart has left
  38. al has left
  39. al has joined
  40. thomaslewis has joined
  41. marc0s has left
  42. marc0s has joined
  43. thomaslewis has left
  44. thomaslewis has joined
  45. thomaslewis has left
  46. emus has joined
  47. jubalh has left
  48. lovetox has joined
  49. Ingolf has joined
  50. al has left
  51. Sam has left
  52. xecks has joined
  53. SouL has joined
  54. wurstsalat has joined
  55. COM8 has joined
  56. COM8 has left
  57. dezant has left
  58. amee2k has joined
  59. amee2k has left
  60. amee2k has joined
  61. msavoritias has joined
  62. marc0s has left
  63. marc0s has joined
  64. Matrix Traveler (bot) has left
  65. homebeach has left
  66. homebeach has joined
  67. Matrix Traveler (bot) has joined
  68. msavoritias has left
  69. msavoritias has joined
  70. goffi has joined
  71. marc has joined
  72. amee2k has left
  73. Dele Olajide has joined
  74. marc0s has left
  75. marc0s has joined
  76. thomaslewis has joined
  77. thomaslewis has left
  78. marc0s has left
  79. marc0s has joined
  80. lovetox has left
  81. thomaslewis has joined
  82. marc0s has left
  83. marc0s has joined
  84. thomaslewis has left
  85. marc0s has left
  86. marc0s has joined
  87. lovetox has joined
  88. amee2k has joined
  89. thomaslewis has joined
  90. Dele Olajide has left
  91. thomaslewis has left
  92. thomaslewis has joined
  93. thomaslewis has left
  94. Dele Olajide has joined
  95. spectrum has joined
  96. xecks has left
  97. xecks has joined
  98. adx has joined
  99. Dele Olajide has left
  100. Dele Olajide has joined
  101. dezant has joined
  102. atomicwatch has joined
  103. emus has left
  104. Kev has joined
  105. debacle has joined
  106. amee2k has left
  107. marc0s has left
  108. marc0s has joined
  109. marc0s has left
  110. marc0s has joined
  111. marc0s has left
  112. marc0s has joined
  113. marc0s has left
  114. marc0s has joined
  115. pulkomandy has left
  116. Matrix Traveler (bot) has left
  117. homebeach has left
  118. homebeach has joined
  119. Matrix Traveler (bot) has joined
  120. Dele Olajide has left
  121. marc has left
  122. marc0s has left
  123. pasdesushi has joined
  124. marc0s has joined
  125. marc has joined
  126. debacle has left
  127. marc has left
  128. xnamed has joined
  129. amee2k has joined
  130. larma has joined
  131. Martin has left
  132. Martin has joined
  133. selurvedu has joined
  134. selurvedu has left
  135. Sam has joined
  136. amee2k has left
  137. amee2k has joined
  138. Sam has left
  139. Matrix Traveler (bot) has left
  140. homebeach has left
  141. homebeach has joined
  142. Matrix Traveler (bot) has joined
  143. lovetox has left
  144. marc0s has left
  145. marc0s has joined
  146. stuart.j.mackintosh has left
  147. Ingolf has left
  148. amee2k has left
  149. dezant has left
  150. marc has joined
  151. libredev has joined
  152. marc0s has left
  153. marc0s has joined
  154. emus has joined
  155. marc0s has left
  156. marc0s has joined
  157. Ingolf has joined
  158. marc has left
  159. libredev has left
  160. libredev has joined
  161. libredev has left
  162. marc has joined
  163. stuart.j.mackintosh has joined
  164. amee2k has joined
  165. marc0s has left
  166. marc0s has joined
  167. emus has left
  168. antranigv has joined
  169. marc0s has left
  170. marc0s has joined
  171. emus has joined
  172. lovetox has joined
  173. marc0s has left
  174. marc0s has joined
  175. SouL has left
  176. SouL has joined
  177. Sam has joined
  178. amee2k has left
  179. marc has left
  180. Sam has left
  181. pulkomandy has joined
  182. amee2k has joined
  183. mh has left
  184. Sam has joined
  185. debacle has joined
  186. mh has joined
  187. marc has joined
  188. kikuchiyo has left
  189. amee2k has left
  190. kikuchiyo has joined
  191. Alex has left
  192. Alex has joined
  193. marc0s has left
  194. marc0s has joined
  195. amee2k has joined
  196. Matrix Traveler (bot) has left
  197. homebeach has left
  198. homebeach has joined
  199. Matrix Traveler (bot) has joined
  200. xecks has left
  201. xecks has joined
  202. antranigv has left
  203. debacle has left
  204. debacle has joined
  205. xecks has left
  206. nephele has joined
  207. xecks has joined
  208. kikuchiyo has left
  209. nephele has left
  210. Wojtek has joined
  211. Matrix Traveler (bot) has left
  212. homebeach has left
  213. homebeach has joined
  214. Matrix Traveler (bot) has joined
  215. Alex has left
  216. Alex has joined
  217. debacle has left
  218. EuAndreh has joined
  219. antranigv has joined
  220. marc0s has left
  221. marc0s has joined
  222. FireFly has left
  223. FireFly has joined
  224. kikuchiyo has joined
  225. norayr has left
  226. norayr has joined
  227. stuart.j.mackintosh has left
  228. pulkomandy has left
  229. Ingolf has left
  230. jubalh has joined
  231. PapaTutuWawa has joined
  232. spectrum has left
  233. antranigv has left
  234. spectrum has joined
  235. antranigv has joined
  236. Sam has left
  237. libredev has joined
  238. Sam has joined
  239. libredev has left
  240. libredev has joined
  241. thomaslewis has joined
  242. thomaslewis has left
  243. Sam has left
  244. Sam has joined
  245. nephele has joined
  246. stuart.j.mackintosh has joined
  247. nephele has left
  248. nephele has joined
  249. libredev has left
  250. nephele has left
  251. Ingolf has joined
  252. Matrix Traveler (bot) has left
  253. homebeach has left
  254. homebeach has joined
  255. Matrix Traveler (bot) has joined
  256. pulkomandy has joined
  257. eu has joined
  258. nephele has joined
  259. nephele has left
  260. pulkomandy has left
  261. nephele has joined
  262. atomicwatch has left
  263. atomicwatch has joined
  264. thomaslewis has joined
  265. amee2k has left
  266. thomaslewis has left
  267. amee2k has joined
  268. nephele has left
  269. libredev has joined
  270. mh has left
  271. mh has joined
  272. debacle has joined
  273. Alex has left
  274. Alex has joined
  275. stuart.j.mackintosh has left
  276. libredev has left
  277. debacle has left
  278. thomaslewis has joined
  279. thomaslewis has left
  280. larma has left
  281. thomaslewis has joined
  282. thomaslewis has left
  283. amee2k has left
  284. amee2k has joined
  285. Menel has joined
  286. thomaslewis has joined
  287. thomaslewis has left
  288. debacle has joined
  289. stuart.j.mackintosh has joined
  290. Menel has left
  291. nephele has joined
  292. nephele has left
  293. nephele has joined
  294. xecks has left
  295. amee2k has left
  296. Martin From the Ox XEP 373: > The <signcrypt/> and <crypt/> elements SHOULD furthermore contain a 'rpad' element which text content is a random-length random-content padding. Are there any best practices about the length range for rpads?
  297. Martin Mine is in the range of 20 to 49 chars, but as long as it is random I think I could just use a 0 to 10 chars rpad and don't add unnecessary bloat.
  298. nephele has left
  299. norayr has left
  300. Alex has left
  301. marc0s has left
  302. marc0s has joined
  303. nephele has joined
  304. lovetox has left
  305. lovetox has joined
  306. nephele has left
  307. nephele has joined
  308. Alex has joined
  309. nephele has left
  310. marc0s has left
  311. marc0s has joined
  312. dezant has joined
  313. nephele has joined
  314. nephele has left
  315. nephele has joined
  316. nephele has left
  317. nephele has joined
  318. nephele has left
  319. nephele has joined
  320. dezant has left
  321. nephele has left
  322. nephele has joined
  323. nephele has left
  324. nephele has joined
  325. marc0s has left
  326. marc0s has joined
  327. nephele has left
  328. raghavgururajan has joined
  329. nephele has joined
  330. nephele has left
  331. pulkomandy has joined
  332. dezant has joined
  333. amee2k has joined
  334. Sam has left
  335. xecks has joined
  336. nephele has joined
  337. nephele has left
  338. Sam has joined
  339. Sam has left
  340. marc0s has left
  341. marc0s has joined
  342. nephele has joined
  343. nephele has left
  344. nephele has joined
  345. amee2k has left
  346. emus has left
  347. nephele has left
  348. lovetox has left
  349. flow Martin, depends on your paranoia level
  350. flow For example, you could calculate the length of the pad so that a certain minimum total length is guranteed
  351. flow For example, you could calculate the length of the pad so that a certain minimum total length is guaranteed
  352. Zash beware statistics!
  353. lovetox has joined
  354. Martin > For example, you could calculate the length of the pad so that a certain minimum total length is guaranteed Yes, but is 20 to 40 chars better than 0 to 20 chars? I don't think so, but I'm no cryptography expert.
  355. Zash I feel like the thing is to pad up to the next multiple of X, but best ask some cryptogopher about how to safely use padding
  356. adx has left
  357. dezant has left
  358. flow Martin, the idea is that you take the actualy payload length into account when calculating rpad's length
  359. thomaslewis has joined
  360. antranigv has left
  361. antranigv has joined
  362. adx has joined
  363. thomaslewis has left
  364. flow There are near endless possiblities how to determine rpad, and given that most cryptographic messaging systems don't even have a thing like rpad, it is potentially not super important, but still nice to have
  365. flow especially in IM communcation where the length of the reponse may provide some insights to an outside observer
  366. Zash What's it for here?
  367. Zash AIUI you can counteract padding meant to hide the length of a message using statistics
  368. flow primary to conceal the length of the plaintext
  369. flow Zash, I am happy about some pointers to reserach in that direction
  370. Zash "yes".length+rand(10) > "no".length+rand(10) given enough samples, that kind of thing
  371. Zash I've got no pointers, sorry. RFCs for TLS &c might have references
  372. lovetox has left
  373. lovetox has joined
  374. thomaslewis has joined
  375. marc has left
  376. Zash Wikipedia! 🙂
  377. flow the one true truth
  378. flow :)
  379. thomaslewis Couldn’t you randomize the argument to rand()? 🤔
  380. thomaslewis has left
  381. pep. Then one would "just" have to run stats with the same method? :p
  382. lovetox has left
  383. amee2k has joined
  384. thomaslewis has joined
  385. marc0s has left
  386. marc0s has joined
  387. larma has joined
  388. thomaslewis Well, if the padding is of random length and content, it would make statistical analysis near meaningless, no?
  389. marc0s has left
  390. marc0s has joined
  391. thomaslewis has left
  392. dezant has joined
  393. thomaslewis has joined
  394. thomaslewis has left
  395. jonas’ incorrect
  396. jonas’ the point of statistics is to get signal out of noise :)
  397. marc0s has left
  398. marc0s has joined
  399. marc0s has left
  400. marc0s has joined
  401. lovetox has joined
  402. marc0s has left
  403. marc0s has joined
  404. Martin So rpadlength=messagelength%100 would make sense?
  405. Martin Instead of using random length.
  406. Zash Martin, that's what I think is the sensible thing.
  407. jonas’ Martin, there is a `100-` missing in that, but yes.
  408. jonas’ `rpadlength = 100 - (messagelength%100)`
  409. Zash that reduces the available entropy, right?
  410. Martin Why? Using modulo 100 would make messagelength + rpadlength always a multiple of 100 or am I wrong?
  411. Zash throws some math and statistics words around
  412. jonas’ Martin, you're wrong
  413. Martin Oh yeah
  414. jonas’ len = 120, 120 % 100 = 20, 120 + 20 != 200
  415. Zash if you pad or crop all messages to the same size, that would leak the least data, right?
  416. antranigv has left
  417. jonas’ yes
  418. Dele Olajide has joined
  419. jonas’ requires you to pad them all to the maximum stanza size though, otherwise you lose data, obviously :)
  420. Zash indeed
  421. Zash hence the pad to multiple of X
  422. Dele Olajide has left
  423. jonas’ I'm still trying to figure out how much entropy that gives you
  424. antranigv has joined
  425. thomaslewis has joined
  426. Zash depends on ... distribution of message sizes, no?
  427. jonas’ possibly
  428. jonas’ also possibly on the maximum message siz
  429. jonas’ also possibly on the maximum message size
  430. jonas’ another way to think about it: it conceals log_2(modulus) bits of the real message length
  431. thomaslewis has left
  432. jonas’ (the logic of which is obvious, if you assume modulus = 2^n (i.e. a power of two); the message length L is a k-bit number. if you pad to a multiple of 2^n, the new message length is L' = m*2^n, with L+2^n >= L' >= L. multiplication by 2^n is identical to left shift by n bits, hence the lowest n bits of the message length are zero, hence the lowest n bits are concealed).
  433. marc0s has left
  434. marc0s has joined
  435. jgart has joined
  436. marc0s has left
  437. marc0s has joined
  438. marc0s has left
  439. marc0s has joined
  440. marc has joined
  441. Martin 😳
  442. adx has left
  443. Kiwi has left
  444. Alex has left
  445. Kiwi has joined
  446. Alex has joined
  447. Maranda has left
  448. Mjolnir Archon has left
  449. raghavgururajan has left
  450. adx has joined
  451. amee2k has left
  452. amee2k has joined
  453. Maranda has joined
  454. Mjolnir Archon has joined
  455. al has joined
  456. selurvedu has joined
  457. thomaslewis has joined
  458. kfv has left
  459. kfv has joined
  460. kfv has left
  461. kfv has joined
  462. kfv has left
  463. kfv has joined
  464. thomaslewis has left
  465. kfv has left
  466. kfv has joined
  467. al has left
  468. al has joined
  469. Yagizа has left
  470. xnamed has left
  471. stuart.j.mackintosh has left
  472. jgart has left
  473. Kev has left
  474. stuart.j.mackintosh has joined
  475. COM8 has joined
  476. COM8 has left
  477. SouL has left
  478. xnamed has joined
  479. jubalh has left
  480. jubalh has joined
  481. amee2k has left
  482. SouL has joined
  483. atomicwatch has left
  484. al has left
  485. emus has joined
  486. amee2k has joined
  487. xnamed has left
  488. atomicwatch has joined
  489. Beherit has joined
  490. Beherit has left
  491. norayr has joined
  492. xecks has left
  493. marc has left
  494. EuAndreh has left
  495. xnamed has joined
  496. marc has joined
  497. serge90 has left
  498. marc0s has left
  499. marc0s has joined
  500. xecks has joined
  501. Matrix Traveler (bot) has left
  502. homebeach has left
  503. homebeach has joined
  504. Matrix Traveler (bot) has joined
  505. marc0s has left
  506. marc0s has joined
  507. thomaslewis has joined
  508. thomaslewis has left
  509. marc0s has left
  510. marc0s has joined
  511. thomaslewis has joined
  512. thomaslewis has left
  513. Wojtek has left
  514. Alex has left
  515. Alex has joined
  516. PapaTutuWawa has left
  517. marc has left
  518. atomicwatch has left
  519. marc has joined
  520. msavoritias has left
  521. thomaslewis has joined
  522. thomaslewis has left
  523. Alex has left
  524. marc has left
  525. dezant has left
  526. dezant has joined
  527. wurstsalat has left
  528. goffi has left
  529. SouL has left
  530. antranigv has left
  531. antranigv has joined
  532. selurvedu has left
  533. selurvedu has joined
  534. debacle has left
  535. marc0s has left
  536. marc0s has joined
  537. eu has left
  538. larma has left
  539. lovetox has left
  540. thomaslewis has joined
  541. thomaslewis has left
  542. thomaslewis has joined
  543. thomaslewis has left
  544. marc0s has left
  545. marc0s has joined
  546. antranigv has left
  547. thomaslewis has joined
  548. thomaslewis has left
  549. pasdesushi has left
  550. emus has left
  551. antranigv has joined
  552. lovetox has joined
  553. amee2k has left
  554. adx has left
  555. antranigv has left
  556. antranigv has joined
  557. thomaslewis has joined
  558. thomaslewis has left
  559. amee2k has joined
  560. thomaslewis has joined
  561. thomaslewis has left
  562. thomaslewis has joined
  563. thomaslewis has left