[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Announce loop-AES-v1.3b file crypto package

To: "Michael H. Warfield" <mhw@wittsend.com>
Subject: Re: Announce loop-AES-v1.3b file crypto package
From: "peter k." <spam-goes-to-dev-null@gmx.net>
Date: Sun, 8 Jul 2001 21:59:16 +0200
Cc: <linux-crypto@nl.linux.org>
References: <Pine.LNX.4.02A.10107081336270.24104-100000@erwin.ash.de> <003801c107a3$e2895800$0100005a@host1> <20010708220916.A22320@chinstrap.nsw.bigpond.net.au> <006a01c107aa$160a67e0$0100005a@host1> <3B48896E.960A9AEF@storm.ca> <006e01c107cd$6325db40$0100005a@host1> <20010708130935.C25558@alcove.wittsend.com> <000901c107d7$0effe920$0100005a@host1> <20010708144314.A11178@alcove.wittsend.com>
Sender: owner-linux-crypto@nl.linux.org

> 3) You're still making the false assumption that your brain is
> a good random number generator.  It's not.  No matter which way you
> cut it, your brain is biased.  "Oh, an "A" would look pretty here."
> Since you are within your own brain, you are NOT an unbiased observer
> of it's workings and (by a little information theory) are incapable
> of judging (or even understanding) fully it's own workings.  The best
> you could do is use some outside influence (dice, cards, /dev/random,
> etc) to provide random input to your though processes and you would
> still impose your own biases on the process with no way to detect those
> biases.  Whether or not your brain would be a good random number
> generator (and I believe that the weight of opinion is that it would not
> be), you are incapable of judging whether it would be simply because
> you would not see your own biases.  You can't judge it's randomness
> based on some proceedure you propose to imploy.  You can only judge
> it through impartial, unbiased, testing of the output it generates.
> You can't do that for yourself.
>
i agree but i can still tell that i choose my random characters with the
least possible bias ;)
but i also understand that using the brain for generating random passwords
isnt a solution which should be generally suggested in crypto readmes as it
really depends on the person who is doing it how random the output is

> But that would REALLY be getting off topic here and this thread
> has probably gone on for much longer than is productive.

yes, and i suggest we make two conclusions from it:
(1) there should be a password howto included in loop-AES [and future
international kernel patches]
(2) maybe there should be a prog written which creates passwords for the
user using /dev/random and it could be also included in loop-AES [and future
international kernel patches]




Linux-crypto:  cryptography in and on the Linux system
Archive:       http://mail.nl.linux.org/linux-crypto/

Follow-Ups:
- RE: Announce loop-AES-v1.3b file crypto package
  - From: "IT3 Stuart B. Tener, USNR-R" <stuart@bh90210.net>
- Re: Announce loop-AES-v1.3b file crypto package
  - From: Jari Ruusu <jari.ruusu@pp.inet.fi>

References:
- Re: Announce loop-AES-v1.3b file crypto package
  - From: Hauke Johannknecht <ash@ash.de>
- Re: Announce loop-AES-v1.3b file crypto package
  - From: "peter k." <spam-goes-to-dev-null@gmx.net>
- Re: Announce loop-AES-v1.3b file crypto package
  - From: Stephen Robert Norris <srn@fn.com.au>
- Re: Announce loop-AES-v1.3b file crypto package
  - From: "peter k." <spam-goes-to-dev-null@gmx.net>
- Re: Announce loop-AES-v1.3b file crypto package
  - From: Sandy Harris <sandy@storm.ca>
- Re: Announce loop-AES-v1.3b file crypto package
  - From: "peter k." <spam-goes-to-dev-null@gmx.net>
- Re: Announce loop-AES-v1.3b file crypto package
  - From: "Michael H. Warfield" <mhw@wittsend.com>
- Re: Announce loop-AES-v1.3b file crypto package
  - From: "peter k." <spam-goes-to-dev-null@gmx.net>
- Re: Announce loop-AES-v1.3b file crypto package
  - From: "Michael H. Warfield" <mhw@wittsend.com>

Prev by Date: Re: Announce loop-AES-v1.3b file crypto package
Next by Date: Re: Announce loop-AES-v1.3b file crypto package
Prev by thread: Re: Announce loop-AES-v1.3b file crypto package
Next by thread: RE: Announce loop-AES-v1.3b file crypto package
Index(es):
- Date
- Thread