On Sep 10, 2013, at 1:05 AM, Chris Peterson <cpeter...@mozilla.com> wrote:
> On 9/9/13 4:25 PM, R. Jason Cronk wrote: >> On 9/9/2013 5:58 PM, Chris Peterson wrote: >>> Our private database maps access point hash IDs to locations (and >>> other metadata). Assuming: >>> >>> H1 = Hash(AP1.MAC + AP1.SSID) >>> H2 = Hash(AP2.MAC + AP2.SSID) >> >> I assume + means concatenate. I might suggest XORing the values. SSID >> names are usually human readable, not meant to be secure and thus follow >> predictable patterns. I also hope you're not using the patterned MAC >> notation but rather the 48 bit address space representation. > > We currently use concatenation, but I see how XOR would make more sense. I think XORing MAC and SSID can lead to duplicate entries. What is the rationale of XORing? Why is the the patterned MAC notation bad to use? I don’t see how it makes a difference. It is simply a MAC in a different format? S. _______________________________________________ dev-security mailing list dev-security@lists.mozilla.org https://lists.mozilla.org/listinfo/dev-security
