On Tue, Jan 04, 2005 at 08:44:11PM +, Ian G wrote:
| R.A. Hettinga wrote:
|
|
http://help.channels.aol.com/article.adp?catId=6sCId=415sSCId=4090articleId=217623
| Have questions? Search AOL Help articles and tutorials:
| .
| If you no longer want to use AOL PassCode, you must release
On Sat, Dec 11, 2004 at 10:24:09PM +0100, Florian Weimer wrote:
| * R. A. Hettinga quotes a news article:
|
| There have been numerous media reports in recent years that terrorist
| groups, including al-Qaida, were using steganographic techniques.
|
| As far as I know, these news stories can
On Mon, Sep 20, 2004 at 10:03:57AM -0400, John Kelsey wrote:
| Academics locked out by tight visa controls
| U.S. SECURITY BLOCKS FREE EXCHANGE OF IDEAS
| By Bruce Schneier
|
| I guess I've been surprised this issue hasn't seen a lot more
| discussion. It takes nothing more than to look at the
On Sun, Dec 14, 2003 at 10:36:02AM -0500, John Kelsey wrote:
| Textual analysis correctly identified the author of _Primary Colors_,
| though that was from a pretty small field of people with the right level of
| inside knowledge. Does anyone know whether there have been real randomized
|
http://www.wired.com/news/technology/0,1282,61289,00.html?tw=wn_tophead_7
We allow everyone to check the security for themselves, because
we're the only ones who publish the source code, said Rop Gonggrijp
at Amsterdam-based NAH6. Gonggrijp, who helped develop the software,
owns a stake in
http://www.nytimes.com/2003/10/12/nyregion/12LACK.html?hp=pagewanted=printposition=
A very long article on the FBI and the 6 fellows in upstate NY who
travelled the world to hang out with religious nutballs. One of the
most interesting things about the case is that the FBI did not catch
these
On Mon, Sep 15, 2003 at 04:07:02PM -0700, Bill Stewart wrote:
| Tim May wrote:
| http://vikingphoenix.com/immigration/davis_sign_illegal.htm
|
| Does anybody remember 10+ years ago when a Driver's License
| wasn't quite a National ID Card or a Citizenship Credential
Yeah. The real problem with
First answer: He's in red, no green, argggh!
Second answer: We've changed the name of the program to ITAR so his
lawsuit goes back to square 1! That's the plan!
Third answer: CAPPS was just a clever distraction, the real program
remains classified. Please step over here.
Adam
On Tue, Sep
On Wed, Sep 10, 2003 at 11:32:29AM -0400, R. A. Hettinga wrote:
| http://www.cryptonomicon.net/modules.php?name=Newsfile=printsid=455
|
| Cryptonomicon.Net -
|
| Anyone Remember Zero Knowledge Systems?
| Date: Wednesday, September 10 @ 11:15:00 EDT
| Topic: Commercial Operations / Services
On Tue, Sep 02, 2003 at 12:47:34PM -0700, Steve Schear wrote:
| http://www.heise.de/newsticker/data/jk-02.09.03-005/
|
| German police have searched and seized the rooms (dorm?) of one of the JAP
| developers. They were on the look for data that was logged throughout the
| period when JAP had
On Mon, Aug 25, 2003 at 08:27:20PM -0700, Len Sassaman wrote:
| However, even when setting aside the issue that our understanding of the
| math involved may be flawed, JAP quickly becomes less appealing choice
| once the other factors are considered.
|
| University / government funded research
John, you write like a Republican speechwriter on a bad trip.
On Tue, Aug 26, 2003 at 12:45:55PM -0700, John Young wrote:
| Nonshit, Robert, Ray's an organ-eating anarchist not a
| vapid tea-sip socialist. A while back Ray yanked a
| capitalist apologist's lawyer's cold dead dried nut heart
|
Well, if you can't win on the truth, win on the procedures.
At least Dr. Mercuri is in fine company there, ranging all the way
back to Socrates and Galileo. Little consolation, I know, as our
democracy gets replaced by a kleptocracy, but what can you do?
Maybe she should set up
On Wed, Aug 06, 2003 at 01:49:26PM -0700, Steve Schear wrote:
| At 11:54 2003-08-06 -0400, Adam Shostack wrote:
| Well, if you can't win on the truth, win on the procedures.
|
| At least Dr. Mercuri is in fine company there, ranging all the way
| back to Socrates and Galileo. Little consolation
On Thu, Mar 20, 2003 at 10:57:12PM -0500, Tim Meehan wrote:
| an okay economy but too many yuppies and climbers (and crappy pot).
| Montreal is the best, but you're better off if you speak Freedom --
| and like hash.
The local pharma retail business seems to be quite flexible in
supplying
On Sat, Mar 15, 2003 at 08:47:15PM +, Michael Shields wrote:
| In article [EMAIL PROTECTED],
| Adam Shostack [EMAIL PROTECTED] wrote:
| (New York just
| announced the abolition of tokens, making all subway travel
| linkable.)
|
| The last time I was in New York, you could buy a Metrocard
On Fri, Mar 14, 2003 at 05:36:28PM +0100, Thomas Shaddack wrote:
| Couple months ago, our local Telecom decided to switch over from
| easy-to-emulate EPROM-based dumb smartcards (described at
| http://www.phrack.com/show.php?p=48a=10 ) to Eurochip ones. Today seemed
| a good day to learn more
On Fri, Mar 14, 2003 at 01:22:44PM -0500, Trei, Peter wrote:
| You're not thinking this through. As the item goes through the door (in
| either direction) the check is made Is this individual tag on this store's
| 'unsold inventory' list?. If so, raise the alarm. The tags are not fungible;
| they
On Thu, Mar 13, 2003 at 11:57:27AM -0500, Tyler Durden wrote:
| If I build the mugger's little
| helper, a PDA attachement that scans for real prada bags, then perhaps
| the RFID tag will be removed at the counter after the first lawsuit.
|
| Nice! Possibly, it might not even be necessary for the
Human rights watchdog Privacy International has launched a quest to
find the World's Most Stupid Security Measure.
http://www.theregister.co.uk/content/55/29279.html
--
It is seldom that liberty of any kind is lost all at once.
-Hume
WASHINGTON, Jan. 2 ? A 19-year-old University of Chicago student was
arrested in Los Angeles today and charged with stealing trade
secrets from DirecTV, the nation's leading satellite television
provider
http://www.nytimes.com/2003/01/03/technology/03PIRA.html
According to prosecutors,
On Tue, Dec 31, 2002 at 09:49:28AM -0800, Kevin Elliott wrote:
| At 12:12 -0500 on 12/31/02, Adam Shostack wrote:
| Rummaging through my wallet...a grocery card in the name of Hughes, a
| credit card with the name Shostack, and an expired membership card in
| the name Doe.
|
| Interesting point
On Tue, Dec 31, 2002 at 01:21:52AM -0800, Bill Stewart wrote:
| At 03:57 PM 12/19/2002 -0500, Adam Shostack wrote:
| On Mon, Dec 16, 2002 at 04:56:12PM -0500, John Kelsey wrote:
| | I think this would help, but I also think technology is driving a lot of
| | this. You don't have to give a lot
On Tue, Dec 31, 2002 at 11:02:48AM -0800, Tim May wrote:
| On Tuesday, December 31, 2002, at 09:49 AM, Kevin Elliott wrote:
|
| At 12:12 -0500 on 12/31/02, Adam Shostack wrote:
| Rummaging through my wallet...a grocery card in the name of Hughes, a
| credit card with the name Shostack
On Thu, Dec 19, 2002 at 10:10:25PM -0600, [EMAIL PROTECTED] wrote:
| Nothing serious, just throwing a quick thought out...
|
| It has been mentioned that you should always use crypto. If you wait until
| you actually have something private to send, then an adversary will know
| exactly which
On Sat, Dec 21, 2002 at 07:40:34PM +0100, Thomas Shaddack wrote:
|
| http://www.speakfreely.org/ is a nice, open-source cross-platfor VoIP
| software. Supports encryption by DES, Blowfish, and IDEA.
|
| Had anyone knowledgeable ever looked at its code? How secure this
| implementation is? Is
On Thu, Dec 19, 2002 at 10:54:57AM -0800, Tim May wrote:
| (Much has been made of how the Microsoft- and Intel-backed security
| regimes will be opt in or voluntary. This seems dubious. It is
| precisely the non-volunteers who these companies, and Hollywood, and
| the Nation States, will be
On Mon, Dec 16, 2002 at 04:56:12PM -0500, John Kelsey wrote:
| At 12:53 PM 12/15/02 -0500, Adam Shostack wrote:
| ...
| I think that a law which re-affirmed the rights to be anonymous, to
| call yourself what you will, to be left alone, to not carry or show ID
| would transform the debate about
On Tue, Dec 17, 2002 at 05:12:35PM -0800, Lucky Green wrote:
| In other words, the new WaveLAN cards are shipping with a remote
| off-switch held by minor government officials. Let's recap the
| initiatives currently underway by both governments and major software
| vendors:
|
| Remote disabling
On Wed, Dec 18, 2002 at 03:17:21PM -0800, Petro wrote:
| On Sat, Dec 14, 2002 at 03:18:09PM -0800, Mike Rosing wrote:
| On Sat, 14 Dec 2002, Tim May wrote:
| Lincoln's notion that the Constitution is suspendable during a war, or
| other emergency conditions, was disgraceful. Nothing in the
|
On Mon, Dec 16, 2002 at 03:03:29PM -0800, Petro wrote:
| Permanently behind on my email:
|
| On Sat, Nov 23, 2002 at 03:22:41PM -0500, Adam Shostack wrote:
| I'm trying to remember details (author, title) of a short story that I
| read once. Its main feature, or the one that's standing out
On Sun, Dec 15, 2002 at 12:22:30PM -0500, Declan McCullagh wrote:
| EPIC is in favor of using technologies to limit the information that
| people disclose. It is in favor of limiting law enforcement
[...]
| But EPIC sharply diverges with some cypherpunks over the question of
| what regulations
On Fri, Dec 13, 2002 at 02:47:37PM -0800, Steve Schear wrote:
| Dare you to do this with your Groucho glasses on :-)
|
| Oh, you saw me at RSA, eh? (Last year I guess it was, the RSA's staff
| allowed me to be photo ID'd wearing them as long as I promised to wear them
| on the show floor,
On Fri, Dec 13, 2002 at 08:17:27AM -0800, Mike Rosing wrote:
| All represive regiemes are short lived in a historical context.
| Living thru them is hell. This one has already begun a rather
| interesting hypocrisy - they say they support gun ownership, but
| they have no problem with letting the
On Fri, Dec 13, 2002 at 10:15:22AM -0800, Steve Schear wrote:
| At 12:43 PM 12/13/2002 -0500, you wrote:
| Gilmore's legal response to secret laws, etc.
|
| http://cryptome.org/gilmore-v-usa-god.htm
|
| I have a possible trip coming up soon. I intend to have my tickets
| purchased by a third
On Fri, Dec 13, 2002 at 10:54:06AM -0800, Marshall Clow wrote:
| At 1:38 PM -0500 12/13/02, Adam Shostack wrote:
| PS: Current news in Canada includes the gun registry having undergone
| a 12x cost overrun, and its not clear what will happen to it. A large
| reason for the overruns have been
On Wed, Nov 20, 2002 at 04:30:42PM -0800, Tim May wrote:
| On Wednesday, November 20, 2002, at 12:49 PM, dmolnar wrote:
|
| On Wed, 20 Nov 2002, Tyler Durden wrote:
|
| to have a big jpg of a hand with middle finger extended...) More than
| this,
| they will have unknowingly destroyed the real
On Mon, Nov 18, 2002 at 07:02:40AM -0800, Mike Rosing wrote:
| On Mon, 18 Nov 2002, Tyler Durden wrote:
|
| Me, I don't like the idea of people actualy selling votes, but I think I
| like the idea of people BEING ABLE to sell their votes.
|
| But then votes are property, and property can be
I think that the intersection of usability and security is of
tremendous import, and wanted to share an under-advertised sort of
workshop announcement:
http://www.acm.org/sigchi/
The conference home page is
http://www.chi2003.org/
The workshop page is
Since posting, I got a better web page:
http://www.iit.nrc.ca/~patricka/CHI2003/HCISEC/index.html
Adam
On Mon, Nov 11, 2002 at 09:54:51AM -0500, Adam Shostack wrote:
| I think that the intersection of usability and security is of
| tremendous import, and wanted to share an under-advertised sort
On Sat, Nov 09, 2002 at 08:10:22PM -0800, Mike Rosing wrote:
| As long as there are people in the military who are willing and able to
| inform us on what they are *really* doing, we actually can feel pretty
| comfortable with their missions. It's gonna take a full polilce state
| to prevent the
On Sun, Nov 03, 2002 at 11:23:36AM -0800, Tim May wrote:
| I think most users, even casual ones, would accept this advice:
|
| Look, encrypted text is just a rearrangement of text. Compose your
| message in whatever editor or word processor you want, apply the
| encryption directly to that
On Sun, Nov 03, 2002 at 12:41:11PM -0800, Tim May wrote:
| To expand on this point a bit, I suspect one of the main reasons people
| who once used PGP stop using it, either privately or at corporations
| (as we have heard folks here testify about), is because something
| changes and things
On Wed, Oct 30, 2002 at 10:32:17AM -0500, Sunder wrote:
| It's interesting to see how much stuff that was in the interest of
| national security being declassified and available after 50 years. Lots
| of cool stuff on the history channel lately. I wonder what evil will
| surface fifty years
On Mon, Oct 28, 2002 at 04:13:31PM -0500, Trei, Peter wrote:
| Actually, the DoT has already ruled positively that one fuel cell from
| Polyfuel
| can be carried on board. They appear to have a cartridge for the methanol,
| similar to a ink cartridge. It's a pity it's methanol - I want to be able
On Fri, Oct 25, 2002 at 02:37:32AM +0100, Adam Back wrote:
| Seems to me this would pass current IP laws because it is like a radio
| station which broadcast the name of a song and the user is expected to
| insert the CD in his player and play along to keep up with the
| commentary, only
http://news.bbc.co.uk/2/hi/technology/2334491.stm
and www.quizid.com
A credit-card sized device, which could potentially be issued to
thousands of citizens, is being heralded as a major breakthrough in
the search for establishing secure identification on the internet.
...
Users are
On Thu, Oct 17, 2002 at 02:39:55PM -0400, Rich Salz wrote:
| Marc Branchaud wrote:
| Any thoughts on this device? At first glance, it doesn't seem
| particularly impressive...
|
| http://www.quizid.com/
|
| Looks like hardware S/Key, doesn't it?
|
| If I could fool the user into entering a
Prosecutors also argued that one of the suspects, Shafal Mosed, was
suspicious because he had 11 credit cards in different names and two
social security cards in different names in his wallet when
arrested.
His attorney, Patrick Brown, said Mosed merely had his own social
security card,
On Wed, Oct 02, 2002 at 09:12:47PM +0100, Ben Laurie wrote:
| Adam Shostack wrote:
| On Wed, Oct 02, 2002 at 04:54:54PM +0100, Ben Laurie wrote:
| | Lucky Green wrote:
| | I also agree that current MTAs' implementations of STARTTLS are only a
| | first step. At least in postfix, the only MTA
On Wed, Oct 02, 2002 at 04:54:54PM +0100, Ben Laurie wrote:
| Lucky Green wrote:
| I also agree that current MTAs' implementations of STARTTLS are only a
| first step. At least in postfix, the only MTA with which I am
| sufficiently familiar to form an opinion, it appears impossible to
| require
On Mon, Sep 30, 2002 at 07:31:19PM -0700, Paul Krumviede wrote:
| --On Tuesday, 01 October, 2002 13:54 +1200 Peter Gutmann
| [EMAIL PROTECTED] wrote:
|
| I recently came across a real-world use of steganography which hides extra
| data in the LSB of CD audio tracks to allow (according to the
On Sat, Sep 21, 2002 at 10:29:16AM -0700, Tim May wrote:
| On Saturday, September 21, 2002, at 09:29 AM, Tim May wrote:
|
| Not a new idea. Ted Nelson (IIRC) wrote about using coin flips to
| randomize AIDS poll questions. (Have you engaged in unprotected sex?
| Flip a coin and XOR it with
On Sat, Sep 21, 2002 at 11:08:54AM -0400, Greg Vassie wrote:
| Interesting little article from
| http://pass.maths.org.uk/issue21/news/random_privacy/index.html:
|
| Excerpt:
| Right now, the rate of falsification on Web surveys is extremely high,
| says Dr Ann Coavoukian, the commissioner
On Sat, Sep 21, 2002 at 01:15:18PM -0700, AARG!Anonymous wrote:
| Greg Broiles wrote about randomizing survey answers:
|
| That doesn't sound like a solution to me - they haven't provided anything
| to motivate people to answer honestly, nor do they address the basic
| problem, which is
On Sat, Aug 31, 2002 at 12:12:16AM -0700, Meyer Wolfsheim wrote:
| On Fri, 30 Aug 2002, Adam Shostack wrote:
|
| I'd like to suggest that while this may be fun, usability and getting
| millions of users to see that remailers are useful to them is a more
| useful goal.
|
| I agree, although I
http://news.bbc.co.uk/2/hi/uk_news/education/2229196.stm
Thousands of teachers will not be able to take classes at the start
of the new term because character checks on them will not have been
completed, the government has admitted.
[...]
Leicestershire was one of the first areas of the
On Sun, Aug 18, 2002 at 01:46:09AM -0400, dmolnar wrote:
|
|
| On Sat, 17 Aug 2002, John Kelsey wrote:
|
| Also, designing new crypto protocols, or analyzing old ones used in odd
| ways, is mostly useful for companies that are offering some new service on
| the net, or doing some wildly new
Hey, this is off-topic for DRM-punks! ;)
more seriously: I think the fundamental issue is that crypto doesn't
really solve many business problems, and it may solve fewer security
problems. See Bellovin's work on how many vulnerabilities would be
blocked by strong crypto. The buying public can't
Of course, the paranoid amonsgt us now believe that Mr. Back wrote the
code, and is engaging in a little misdirection below.
Thanks for making the analysis easy!
;)
On Fri, Aug 09, 2002 at 08:11:15PM +0100, Adam Back wrote:
| Very nice.
|
| Nice plausible set of candidate authors also:
|
, USA
Brian Levine, University of Massachusetts at Amherst, USA
David Martin, University of Massachusetts at Lowell, USA
Andreas Pfitzmann, Dresden University of Technology, Germany
Matthias Schunter, IBM Zurich Research Lab, Switzerland
Andrei Serjantov, University of Cambridge, England
Adam
On Tue, Jul 09, 2002 at 07:22:30PM -0700, Tim May wrote:
| On Tuesday, July 9, 2002, at 06:30 PM, Anonymous wrote:
|
| On 9 Jul 2002 at 14:02, Tim May wrote:
| Unless one's stay is a short one (see below), income or other
| money earned while in the U.S. (and maybe earned outside the
| U.S.
On Wed, Jun 26, 2002 at 09:51:58AM -0400, Donald Eastlake 3rd wrote:
| Privacy, according to the usual definitions, involve controlling the
| spread of information by persons autorized to have it. Contrast with
| secrecy which primarily has to do with stopping the spread of
| information through
On Mon, Jun 24, 2002 at 08:15:29AM -0400, R. A. Hettinga wrote:
Status: U
Date: Sun, 23 Jun 2002 12:53:42 -0700
From: Paul Harrison [EMAIL PROTECTED]
Subject: Re: Ross's TCPA paper
To: R. A. Hettinga [EMAIL PROTECTED]
The
important question is not whether trusted platforms are a good
I find myself storing a pile of vaugely sensitive information on my
palm. Where do I find the competent analysis of this? Ideally, I'd
like to be able to protect things that I move into a sensitive area
(passwords), and maybe select items in other places that I want to
encrypt. I don't really
Hey, most of your points about crypto going under the hood are well
taken. I wanted to echo Peter Gutmann's comments about PGP, and add
that I see PGP as a protocol, and most of the protocols I use daily
(TCP, IP, UDP, DNS, HTTP, SMTP) have not changed in the last 10 years
and I don't need to
On Thu, May 23, 2002 at 12:24:00AM -0700, Lucky Green wrote:
| Adam wrote:
| Which is too bad. If NAI-PGP went away completely, then
| compatability problems would be reduced. I also expect that
| the German goverment group currently funding GPG would be
| more willing to fund UI work
On Sat, May 11, 2002 at 08:23:39PM -0400, Declan McCullagh wrote:
| On Tue, Apr 30, 2002 at 09:20:32PM -0400, Steve Furlong wrote:
| And most of the sheeple _like_ it. They'd rather be safe than free. For
| every complaint I've heard about having to reassure the bank that the
| card wasn't
On Sun, May 12, 2002 at 10:18:41AM -0400, Sandy Harris wrote:
| Morlock Elloi wrote:
|
| Mental constructs like this one, complicated schemes that require knowledge of
| modular aritmetic to understand, is why this will not happen.
|
| Whatever aspires to replace paper cash for purposes
On Sat, May 11, 2002 at 04:01:11AM +1200, Peter Gutmann wrote:
| General rant: It's amazing that there doesn't seem to be any published research
| on such a fundamental crypto mechanism, with the result that everyone has to
| invent their own way of doing it, usually badly. We don't even
On Thu, Apr 11, 2002 at 02:37:50PM +0100, Adam Back wrote:
| - deployment / chicken and egg problem (merchants want lots of users
| before they're interested users want wide merchant acceptance before
| their interested)
I think its worse than that. The normal technology adoption curve is
that
On Wed, Apr 10, 2002 at 02:22:04PM -0400, Trei, Peter wrote:
| If a stack of bills containing these transponders are supposed to be
| read from afar, way beyond what a valid bill detector is likely to be
| engineered to do, I'd like to see the physics worked out.
|
| Detection range turns
On Wed, Apr 10, 2002 at 10:59:32AM -0700, Tim May wrote:
| On Wednesday, April 10, 2002, at 09:27 AM, Trei, Peter wrote:
| For paper money failure rates will probably be high anyway.
| So, if in fact we _are_ talking about each $20 bill having such a
| transponder, then why are our arguments
73 matches
Mail list logo
