Archive for December, 2007

140 trends, zero, etc

Saturday, December 22nd, 2007

Holiday season is NYC can be a painful time of year, but not for the reasons of which most people think. You see, during the holiday season, any watering holes to which you regularly go will likely throw many a free drink at you. Which leads to a problem – you want to go to all these places and see everyone for the holidays, but you don’t want to end up being carried home. So, now you either turn down those drink gifts from those around you or you end up in a tortuous state the next morning, both of which can hurt.

Which is to say, on this home stretch of the holiday season here in the USA, I wish everyone a happy holidays!

A post to the SAAG mailing list of interest to the FIPS 140 readers.

This decade many global financial institutions (e.g. banks, insurance firms, credit unions, and so forth) have said that their commercial (re-)insurers are pressuring them to deploy only FIPS-140 compliant algorithms & modes.

In a growing number of cases, there is even pressure from insurers onto major commercial firms, particularly financial firms, to use only equipment (including ordinary routers and switches, not just “security appliances”) that actually has obtained a FIPS-140 approval for the cryptographic module inside.

Further, a number of governments other than the US government have declared that implementations using cryptographic modules that have been approved under FIPS-140 are also acceptable for deployment within their country or government or both. The number of countries in this group appears to be growing, and seems visibly larger now than 8 years ago.

These are trends that people in the FIPS 140 arena have been talking about for a while, and I know I have seen and been involved with them by virtue of having had a strong window into “the vendor going for FIPS 140 validation” perspective for quite some time now. It is interesting to read someone else’s encounters with these things in a public forum.

So, besides the normal USA government requirements, support of at least a FIPS-approved algorithm suite has become a baseline requirement found almost everywhere now when cryptography is used, and every so often you even see pushes for FIPS 140 validation outside of the USA government. Given that, it is commonplace these days for standards, products, and such utilizing cryptography to include support for a FIPS-approved algorithm suite. Doing so not only brings into use a very commonly deployed, rigorously studied, and well-known set of algorithms, but it also facilitates products implementing those standards, products, and such in being able to go through the FIPS 140 validation process at some point. This makes even more sense since many of the people working on standards, products, and such utilizing cryptography are employed by companies that have to play in the FIPS 140 arena, and so there is often thought given to the FIPS 140 “validatibility” of modules implementing these standards, derived from these products, and such.

With the widespread notoriety of many of the algorithms that get rolled into NIST standards causing tons of eyes to look over these standards very closely, and with things like AES and now the next SHA being derived from open international competitions not to mention modes of operation and such being submitted by the outside world, none of this should come as a surprise.

-

Also of possible interest to FIPS 140 readers, a couple [1, 2] of useful posts on Metzger’s cryptography mailing list on the old topic of how to prevent the compiler from potentially optimizing away your “zeroizing” memset call in C. The sort answer, take advantage of volatile.

An example of how GnuPG does this from [1],

  /* To avoid that a compiler optimizes certain memset calls away, these
     macros may be used instead. */
  #define wipememory2(_ptr,_set,_len) do { \
                volatile char *_vptr=(volatile char *)(_ptr); \
                size_t _vlen=(_len); \
                while(_vlen) { *_vptr=(_set); _vptr++; _vlen--; } \
                    } while(0)
  #define wipememory(_ptr,_len) wipememory2(_ptr,0,_len)

And, [2] points to this 2002 MSDN article on the topic.

-

Finally, random software that has been popping up on some mailing lists I follow.

I remember using Maple quite a bit in college.

SAGE.

Use SAGE for studying a huge range of mathematics, including algebra, calculus, elementary to very advanced number theory, cryptography, numerical computation, commutative algebra, group theory, combinatorics, graph theory, and exact linear algebra.

And, I did lots of Lisp there too.

Clojure.

Clojure is a dynamic programming language that targets the Java Virtual Machine. It is designed to be a general-purpose language, combining the approachability and interactive development of a scripting language with an efficient and robust infrastructure for multithreaded programming. Clojure is a compiled language – it compiles directly to JVM bytecode, yet remains completely dynamic. Every feature supported by Clojure is supported at runtime. Clojure provides easy access to the Java frameworks, with optional type hints and type inference, to ensure that calls to Java can avoid reflection.

Clojure is a dialect of Lisp, and shares with Lisp the code-as-data philosophy and a powerful macro system. Clojure is predominantly a functional programming language, and features a rich set of immutable, persistent data structures. When mutable state is needed, Clojure offers a software transactional memory system and reactive Agent system that ensure clean, correct, multithreaded designs.

Io.

Io is a small, prototype-based programming language. The ideas in Io are mostly inspired by Smalltalk (all values are objects), Self (prototype-based), NewtonScript (differential inheritance), Act1 (actors and futures for concurrency), LISP (code is a runtime inspectable/modifiable tree) and Lua (small, embeddable).

Wow, it’s been 10 years.

Nmap v4.50.

December 13, 2007 — Insecure.Org is pleased to announce the immediate, free availability of the Nmap Security Scanner version 4.50 from http://insecure.org/nmap/. Nmap was first released in 1997, so this release celebrates our 10th anniversary.

Posted in Crypto, Off-topic | No Comments »

Pacha crowd, election beauty, search goodness

Saturday, December 15th, 2007

It has been a long time since I wrote a weekend post, as some people have pointed out. Being busy on weekdays looks to have gradually shifted more of my out and about time to weekends, which might be the culprit. And, I guess while the quickies posts might be similar to a weekend post, they just aren’t the same enough for some of you. So, let’s do this.

-

Ok, let me first get the disappointment out of the way – I don’t have any nightlife or other stories I want to write up this time.

That said, Pacha NYC does seem to be a topic of interest to many, as my thoughts on customer service there have attracted some attention. So, why not comment on the crowd?

As I stated before, Pacha is big and well-known, which means that lots of people go there and almost every one of them gets in. The result of this often seems to be that there are very positive, very negative, and a whole bunch of neutral people running around inside during peak time, which is to say, you may run into someone that makes you smile but you may also run into someone that makes you frown.

I guess I should qualify my terms a bit. My thoughts on positive, negative, and neutral in this context are something like follows.

  • Positive – there to have fun; respectful; happy; enjoys the music; can handle a crowd.
  • Negative – rude; angry; beligerent; incoherent; upset by a crowd.
  • Neutral – just sort of there; meat market.

Now, there are three DJs that get me into Pacha routinely, Boris, Victor Calderone (VC), and Danny Tenaglia (dt), and so I will comment on the crowds for these three.

While the neutral people are hard to notice, the positive and negative people do make an impact and their concentrations tend to vary quite a bit across these three DJs when at Pacha. So, here is a breakdown of the crowd for each.

  • Boris – Boris generally has a balanced mix of negative and positive people during peak. As after hours comes in, most negative people head out, leaving a much higher concentration of positive people to negative people, which means a good crowd for after hours.
  • dt – During peak, the crowd at Tenaglia always seems to be at the extremes, having both the highest concentration of negative people and the highest concentration of positive people. However, once the party rolls over fully to after hours, the dt regulars tend to take over the place. Tenaglia has a “be yourself” and let others be themselves motto, which is something the dt regulars have adopted fully, meaning the crowd when after hours kicks into high gear is completely positive and absolutely perfect.
  • VC – The crowd for Calderone from peak to finish always seems to have the lowest concentration of negative people and a high concentration of positive people. Once after hours kicks in, the few negative people tend to depart, leaving a great crowd.

Based solely on crowd, that makes the best bet to go to Pacha when VC is there; however, if you are a late-nighter (like me), then dt pulls ahead.

My recommendation though, forget the crowd, go for the music and fun, and focus on the after hours. All three of these guys play marathon sets (at least 8 hours long), and none of them really kick into high gear until at least 6AM.

-

So, I briefly mentioned height and the results of USA presidential elections in part of a ramble.

We can play with features here too. Take height, which can both play a role in being judged beautiful and has strong ties to being perceived as a leader. Perhaps this is because physical size played an important role in being a leader way back when and helped with survival. Whatever the cause, there are some interesting statistics about height and power. Just look at the heights of US presidents in general (and even as compared to their opponents – probably one of the best ways to pick which candidate will win an election). And, how tall are the CEOs of major corporations on average?

Now, I did not qualify “best” in that comment at all and intended it to be a bit humorous, but the end result may be an incorrect statement. Of course, the general point was to show the influence of physical attributes on our perceptions of people, not to actually mean the most effective way to predict the results of a USA presidential election is answering the question “which candidate is taller?” Nevertheless, I have since changed that statement to avoid additional headaches. ;)

Looking at Wikipedia, there is a discussion of the topic here, which gives the heights of the USA presidents and is summed up as follows.

In reality, for the 46 elections in which the height of which both candidates is known, the taller candidate won 25 times (approximately 54 percent of the time), the shorter candidate won 18 times (approximately 39 percent of the time) and the candidates were the same height three times (about 7 percent of the time).[original research?] Therefore, the taller candidate has won the majority of elections, but the tall-short margin of victory is by no means overwhelming.

It should be noted however that in three of the cases where the shorter candidate won, the taller candidate actually received more popular votes but lost in the Electoral College; this happened in 1824, 1888, and 2000 (the other time that the electoral vote winner was not the popular vote winner was in 1876, for which we do not know the height of the loser).[original research?] So of the 46 cases we have data, the taller candidate has won the popular vote 28 times (61 percent), and the shorter candidate only about 15 times (33 percent of them).

I have no idea if the height information is accurate, but, if it is, this boils down to the following… In USA presidential elections where we know height was different, 58% of the time the taller candidates won the election, and 65% of the time they won the popular vote. Since 1900, in USA presidential elections where we know height was different, 65% of the time the taller candidates won the election, and 69% of the time they won the popular vote.

Clearly, those odds favor the taller candidate, so height is a simple, physical appearance based metric to pick the winner of a USA presidential election with greater than coin flip odds. This seems to make sense, as height is an aspect of physical appearance that effects peoples’ judgments of leadership capabilities. But, let’s look at another aspect of physical appearance that probably shines through better than height in many media used today – faces.

So, we have this paper.

Human groups are unusual among primates in that our leaders are often democratically selected. Faces affect hiring decisions and could influence voting behavior. Here, we show that facial appearance has important effects on choice of leader. We show that differences in facial shape alone between candidates can predict who wins or loses in an election (Study 1) and that changing context from war time to peace time can affect which face receives the most votes (Study 2). Our studies highlight the role of face shape in voting behavior and the role of personal attributions in face perception. We also show that there may be no general characteristics of faces that can win votes, demonstrating that face traits and information about the environment interact in choice of leader.

With the results…

Feeding this percentage into the regression models, we found that the models predicted a win for Blair in terms of both popular vote (53.17%) and seats won (56.6%).

Our predictions were relatively accurate, as Blair won 52.13% of the actual two-way share of the popular vote and 64.3% of the split in seats won[...]

The final polling revealed, from a 99% return for the two candidates, that Bush had 51% and Kerry had 48% of votes, very similar to the 56%/44% split here when judges were asked which face they would vote for as the leader of their country.

And this paper.

Here we show that rapid judgments of competence based solely on the facial appearance of candidates predicted the outcomes of gubernatorial elections, the most important elections in the United States next to the presidential elections. In all experiments, participants were presented with the faces of the winner and the runner-up and asked to decide who is more competent. To ensure that competence judgments were based solely on facial appearance and not on prior person knowledge, judgments for races in which the participant recognized any of the faces were excluded from all analyses. Predictions were as accurate after a 100-ms exposure to the faces of the winner and the runner-up as exposure after 250 ms and unlimited time exposure (Experiment 1). Asking participants to deliberate and make a good judgment dramatically increased the response times and reduced the predictive accuracy of judgments relative to both judgments made after 250 ms of exposure to the faces and judgments made within a response deadline of 2 s (Experiment 2). Finally, competence judgments collected before the elections in 2006 predicted 68.6% of the gubernatorial races and 72.4% of the Senate races (Experiment 3). These effects were independent of the incumbency status of the candidates. The findings suggest that rapid, unreflective judgments of competence from faces can affect voting decisions.

Great, so now we have evidence that facial appearance impacts how we rate someone as a leader too, and this can be used to predict election results. (All of which is right in line with the original ramble.)

So, lets reduce all of this height and face stuff down to the level of picking candidates by answering a simple question, such as our “who is taller?” question.

Perhaps a just as simple and maybe better way to pick who will be elected president than answering “who is taller?” is to answer this more general question – who best looks the part? (A little lamination goes a long way. ;) ) And, of course, a consensus answer gives better results than each individual answer here.

Which might also be in line with this other paper.

The current study examined whether desired personality influences face preference. Pairs of composite faces were made based on the faces that individuals differing in desired partner personality found most attractive. One composite represented a face most attractive to those desiring a particular trait and the other a face most attractive to those not desiring the same trait. Pairs were presented to different participants to ascertain whether the composites reflected the desired personality of the original raters. For several traits the composites did differ in perceived personality indicating that the personality desired in a partner is reflected in face preference: if a trait is desired then faces perceived to possess that trait are found more attractive than faces which do not possess that trait. These findings cast new light on the ‘‘what is beautiful is good’’ stereotype. What an individual desires in partner reflects what they consider ‘‘good’’, and they find faces reflecting these desired traits as attractive – ‘‘what is good is beautiful’’. Possessing personality traits that are attractive may be causal in making a face attractive.

What is good is beautiful, or what is beautiful is good? However you look at it then beauty is good.

But, when do we start to recognize beauty and judge people as attractive or not?

Like adults, young infants prefer attractive to unattractive faces (e.g. Langlois, Roggman, Casey, Ritter, Rieser-Danner & Jenkins, 1987; Slater, von der Schulenburg, Brown, Badenoch, Butterworth, Parsons & Samuels, 1998). Older children and adults stereotype based on facial attractiveness (Eagly, Ashmore, Makhijani & Longo, 1991; Langlois, Kalakanis, Rubenstein, Larson, Hallam & Smooth, 2000). How do preferences for attractive faces develop into stereotypes? Several theories of stereotyping posit that categorization of groups is necessary before positive and negative traits can become linked to the groups (e.g. Tajfel, Billig, Bundy & Flament, 1971; Zebrowitz-McArthur, 1982). We investigated whether or not 6-month-old infants can categorize faces as attractive or unattractive. In Experiment 1, we familiarized infants to unattractive female faces; in Experiment 2, we familiarized infants to attractive female faces and tested both groups of infants on novel faces from the familiar or novel attractiveness category. Results showed that 6-month-olds categorized attractive and unattractive female faces into two different groups of faces. Experiments 3 and 4 confirmed that infants could discriminate among the faces used in Experiments 1 and 2, and therefore categorized the faces based on their similarities in attractiveness rather than because they could not differentiate among the faces. These findings suggest that categorization of facial attractiveness may underlie the development of the ‘beauty is good’ stereotype.

Which brings us to this major work that pulls together of a wealth of studies.

Common maxims about beauty suggest that attractiveness is not important in life. In contrast, both fitness-related evolutionary theory and socialization theory suggest that attractiveness influences development and interaction. In 11 meta-analyses, the authors evaluate these contradictory claims, demonstrating that (a) raters agree about who is and is not attractive, both within and across cultures; (b) attractive children and adults are judged more positively than unattractive children and adults, even by those who know them; (c) attractive children and adults are treated more positively than unattractive children and adults, even by those who know them; and (d) attractive children and adults exhibit more positive behaviors and traits than unattractive children and adults. Results are used to evaluate social and fitness-related evolutionary theories and the veracity of maxims about beauty.

In which we finds things like this.

Surprisingly, in addition to being judged differently as a function of their attractiveness, attractive individuals on average were treated significantly better than unattractive individuals. These findings are powerful evidence that, contrary to popular belief, attractiveness effects extend beyond mere “opinions” of others and permeate actual actions towards others, even though people may not be aware of it.

And, the concluding paragraph of that paper, which follows, reminded me of my previous post on this blog (i.e., this one).

An alternative viewpoint concludes the opposite about the maxims. Perhaps they have been too successful. Perhaps, because children and adults have listened carefully to and assimilated these maxims, they are confident that they have unique standards of beauty, that they do not judge or treat people differently based on their appearance, and that beauty has nothing to do with a person’s behaviors and traits. If people believe that they behave in accord with these principles of decency, they have no reason to recognize or change their behavior. Thus, the very research that identifies the powerful way in which people react to physical attractiveness might ameliorate these apparent unconscious and automatic processes. Being cognitive, humans have the behavioral plasticity and foresightedness to learn to oppose these influences, and the maxims can again remind people to behave more consciously and humanely.

Finally, when it comes to being physically attractive, being the “hottest” is not necessarily the way to be considered the most trustworthy.

If humans are sensitive to the costs and benefits of favouring kin in different circumstances, a strong prediction is that cues of relatedness will have a positive effect on prosocial feelings, but a negative effect on sexual attraction. Indeed, positive effects of facial resemblance (a potential cue of kinship) have been demonstrated in prosocial contexts. Alternatively, such effects may be owing to a general preference for familiar stimuli. Here, I show that subtly manipulated images of other-sex faces were judged as more trustworthy by the participants they were made to resemble than by control participants. In contrast, the effects of resemblance on attractiveness were significantly lower. In the context of a long-term relationship, where both prosocial regard and sexual appeal are important criteria, facial resemblance had no effect. In the context of a short-term relationship, where sexual appeal is the dominant criterion, facial resemblance decreased attractiveness. The results provide evidence against explanations implicating a general preference for familiar-looking stimuli and suggest instead that facial resemblance is a kinship cue to which humans modulate responses in a context-sensitive manner.

Not that one necessarily cares whether they are considered the MOST trustworthy or not, especially when many people do what they can to get and keep that “hot” person looking their way with interest and a smile. Which might be related to this.

ABSTRACT—Few studies have investigated how physical and social facial cues are integrated in the formation of face preferences. Here we show that expression differentially qualifies the strength of attractiveness preferences for faces with direct and averted gaze. For judgments of faces with direct gaze, attractiveness preferences were stronger for smiling faces than for faces with neutral expressions. By contrast, for judgments of faces with averted gaze, attractiveness preferences were stronger for faces with neutral expressions than for smiling faces. Because expressions can differ in meaning depending on whether they are directed toward or away from oneself, it is only by integrating gaze direction, facial expression, and physical attractiveness that one can unambiguously identify the most attractive individuals who are likely to reciprocate one’s own social interest.

-

Finally, in keeping with the spirit of a weekend post, here is the ever popular look at some interesting search terms that popped up in the logs.

what+is+the+use+of+physical+beauty%3F

As referenced in this current post itself, this paper is one exploration of that topic.

photos+hotornot.com+without+permission+angry

In this CCD age, I find that for almost everything people do, someone is right there taking a picture. And, those digital pcitures almost always seem to somehow find their way onto the public interwebs. And, once out there, people tend to do all sorts of things with the pictures that may not have been intended or desired by the people captured in those pictures.

Perhaps we are entering an age of utter transparency with no privacy. Then again, maybe a major backlash will happen here (a cypherpunk opportunity? ;) ).

+Bartenders,+fustration+with+music+they+like+compared+to+what+their+customers+enjoy

One of my positive comments about some of the bartenders in Pacha was that they seemed to like the music. I don’t think liking the music is really what matters though, it is the positive attitude implied by liking the music that has an effect. Which is to say, whether or not you like the music, create a positive atmosphere for the patrons and give them a good customer service experience. If you can’t do that because the music makes you negative, then it may be time to move on.

what+is+a+humint

A humint? Is that like a hummus, only with a taste? This post might be of interest.

diner+%2B+mid-town+manhattan%2C+ny

Cheyenne, as noted in this post.

start+a+home+based+catering+business

The closest I come to cooking is screen printing tees – i.e., curing plastisol ink – and you definitely don’t want to eat the results of that.

And, in our grand tradition, we wrap up here…

middle+age+panty

panty%2Bthrowing%2Bascii%2Bart

Now that’s quality.

Posted in Off-topic | No Comments »

Quickies: smell, bot, book, wikipedia, moon

Tuesday, December 11th, 2007

I found this article interesting.

“The study suggests that people conscious of the barely noticeable scents were able to discount that sensory information and just evaluate the faces,” Li said. “It only was when smell sneaked in without being noticed that judgments about likeability were biased.”

In other words, awareness of the situation allows a person to adjust their response to suit the situation. There are two key elements at work here – being aware, and effectively using that awareness.

Anyway, this reminded me of Cialdini’s Influence. The attacks of influence are often carried out beneath the radar of the person being attacked. The attacker triggers automatic responses in the person to influence their decisions/behavior, and the actions that hit these triggers go unnoticed at a conscious level by the person being attack at the time of attack, which results in the person being attacked not properly recognizing the level of influence coming from the attacker. Once a person is aware of triggers and/or able recognize attempts to pull triggers, a person can work to mitigate the influence of triggers and/or the responses to triggers.

Side note, I always find this sort of thing interesting with regards to emotions and relationships. We all have emotional triggers, things that set off strong emotional responses. Learning to understand our triggers, and those of the people around us, can go a long way to having healthy, satisfying relationships. And, with such relationships, comes a great deal of our basic security.

-

Speaking of people, this article has been making the rounds.

The artificial intelligence of CyberLover’s automated chats is good enough that victims have a tough time distinguishing the “bot” from a real potential suitor, PC Tools said. The software can work quickly too, establishing up to 10 relationships in 30 minutes, PC Tools said. It compiles a report on every person it meets complete with name, contact information, and photos.

Ok, so, social engineering is nothing new, and love letters have flooded inboxes. But, it got me thinking for a second…

So, I often speak of using real people for people based attacks leveraging things like beauty and charm. However, since real people tend to be a scarce resource, we are quite limited in the number of attacks that can be carried out and, the less attacks we can carry out, the more important each particular attack becomes. For in person attacks, this people cost can reach extremes. On the other hand, if we go virtual, we can come up with all sorts of ways to farm out the people work to reduce its cost.

Coming back to the article at hand, as a potential way to combine this sort of bot and real people, perhaps a bot that bridged conversations serving as a middle man would be interesting. For example, the bot could hang out in multiple chat rooms or web forums, and cross connect conversations. Or, reply to Craigslist ads and link responders.

Of course, with none of the human participants likely to have the agenda of the attacker here, the conversations would probably have less of a chance of being useful to the attacker than result of automated scripts, even if you could effectively pull off the bridging. Oh well.

-

I remember mentioning cell phone tanka a while back. This takes it to a new level.

“I typed it all on my mobile phone,” Rin explains matter-of-factly over the same device. “I started writing novels on my mobile when I was in junior high school and I got really quick with my thumbs, so after a while it didn’t take so long. I never planned to be a novelist, if that’s what you’d call me, so I’m still quite shocked at how successful it’s turned out.”

[...]

Remarkably, half of Japan’s top-10 selling works of fiction in the first six months of the year were composed the same way – on the tiny handset of a mobile phone. They sold an average of 400,000 copies. By August, the president of Goma Books, Masayoshi Yoshino, was declaring in a manifesto that he was determined “to establish this not simply as a fad, but as a new kind of culture”.

My “waiting to be read” book queue is at ~20. As far as I know, none of these books were written on a mobile phone. I really have to get with the times.

-

When you build a technology based on community input and open communication in a medium that lets gossip circle the world at roughly the speed of light, you can’t expect to hide behind a curtain. And, beautifully, the end result is an open study in people, power, and paranoia, with a good helping of “trust me, it’s for your own good” arguments and “shoot yourself in the foot” phenomena.

A couple of choice excerpts from the article,

Meanwhile, Durova continued to insist that she had some sort of secret evidence that could only be viewed by the Arbitration Committee. “I am very confident my research will stand up to scrutiny,” she said. “I am equally confident that anything I say here will be parsed rather closely by some disruptive banned sockpuppeteers. If I open the door a little bit it’ll become a wedge issue as people ask for more information, and then some rather deep research techniques would be in jeopardy.”

And,

This sort of extreme paranoia has become the norm among the Wikipedia inner circle. There are a handful sites across the web that spend most of their bandwidth criticizing the Wikipedia elite – the leading example being Wikipedia Review (http://wikipediareview.com/) – and the ruling clique spends countless hours worrying that these critics are trying to infiltrate the encyclopedia itself.

Now, I partially pointed to this because I know my circles are always amused by this stuff. But, I also wanted to note this.

But he’s not admitting how deep this controversy goes. Wales and the Wikimedia Foudation came down hard on the editor who leaked Durova’s email. After it was posted to the public forum, the email was promptly “oversighted”
- i.e. permanently removed. Then this rogue editor posted it to his personal talk page, and a Wikimedia Foundation member not only oversighted the email again, but temporarily banned the editor.

It ain’t easy blowing whistles. Even in a supposedly open forum such as Wikipedia, the powers that be crack skulls. You know, silence the critics and keep them silent.

Here, that cracking of skulls is figurative. In other venues, it could be literal. Anonymity has its uses.

Oh, and in the conclusion of a related article, we have a good summary of what seems to be going on.

“Wikipedia, in its way, is of great benefit to the web community,” he says. “But I’ve also been greatly dismayed that Wikipedia has apparently attracted some intelligent but problematic personalities with ambition, secret personal agendas, and cold, ruthless behavior towards other editors and ideas that they perceive as threatening their power, position, or agendas. What’s disheartening is that Jimbo and the rest of the Wikimedia Foundation not only don’t do anything about it, but they appear to support these charlatans to some degree.”

-

I mentioned the contest previously. Well, here comes the first entrant.

The Google Lunar X-Prize folks held an event at a space investment conference in San Jose to announce their first fully-registered competitor.

Odyssey Moon, a startup based on the Isle of Man, and run by Carl Sagan mentee, Bob Richards and the CFO of  satellite-provider Inmarsat, Ramin Khadem, plans to land a rover on the moon within the next seven years.

Posted in Anonymity & Privacy, Off-topic, Security | No Comments »

Quickies: ossl fips prng seeding, privoxy, gcm, hash stuff, misc

Monday, December 3rd, 2007

Ouch.

A significant flaw in the PRNG implementation for the OpenSSL FIPS Object Module v1.1.1 (http://openssl.org/source/openssl-fips-1.1.1.tar.gz, FIPS 140-2 validation certificate #733, http://csrc.nist.gov/groups/STM/cmvp/documents/140-1/140val-all.htm#733) has been reported by Geoff Lowe of Secure Computing Corporation. Due to a coding error in the FIPS self-test the auto-seeding never takes place. That means that the PRNG key and seed used correspond to the last self-test. The FIPS PRNG gets additional seed data only from date-time information, so the generated random data is far more predictable than it should be, especially for the first few calls.

I updated this post accordingly.

[...]This means the PRNG is not reseeded after the KAT, so the PRNG ends up seeded with constant self-test values.

A couple of patches [1,2] are available for the OpenSSL FIPS module. The patches boil down to running FIPS_rand_method()->cleanup() after the PRNG KAT and then reseeding the PRNG.

-

In “related to Tor” news, this is a good write-up on recent vulnerabilities in what is often the default Privoxy configuration, including that shipped with the Tor bundle up until recently.

The installed ‘config.txt’ file (‘config’ on Mac OS X) had the following option values set to 1:

  • enable-remote-toggle
  • enable-edit-actions

Additionally, on Windows the following option was set to 1:

  • enable-remote-http-toggle

Malicious sites (or malicious exit nodes) could include active content (e.g., JavaScript, Java, Flash) that caused the web browser to:

  • make requests through the proxy that causes Privoxy filtering to be bypassed or completely disabled>
  • establish a direct connection from the web browser to the local proxy and modify the user defined configuration values

It should be noted that these are not Tor specific attacks on Privoxy and you may want to disable these Privoxy configuration options even in non-Tor environments.

-

SP800-38D, specifying the GCM mode of operation, has been finalized.

Recommendation for Block Cipher Modes of Operation: Galois/Counter Mode (GCM) and GMAC has been finalized. This Recommendation specifies and approves Galois/Counter Mode (GCM), an authenticated encryption mode of the Advanced Encryption Standard (AES) algorithm.

I remember superficially comparing GCM and CCM back a few years ago. Both seemed to have a push at NIST, but you knew CCM would go through the vetting process relatively quickly being a combined mode of what was already accepted while GCM would take a bit of time. Well, CCM has been approved for quite a while, and now GCM is finally there too.

-

These [1,2] have been making the rounds. More fun with MD5.

We announce two different Win32 executable files with different functionality but identical MD5 hash values. This shows that trust in MD5 as a tool for verifying software integrity, and as a hash function used in code signing, has become questionable.

We have used a Sony Playstation 3 to correctly predict the outcome of the 2008 US presidential elections. In order not to influence the voters we keep our prediction secret, but commit to it by publishing its cryptographic hash on this website. The document with the correct prediction and matching hash will be revealed after the elections.

-

Speaking of hashing, there is a mailing list for the NIST hash competition.

A hash-forum@nist.gov email mailing list has been established for dialogue regarding NIST’s Cryptographic Hash Workshops and Hash Algorithm Competition. It is an unmoderated mailing list; messages addressed to this list are immediately distributed to all the addresses on the list. Only members are allowed to post messages to the list; however, anyone who wishes to do so may add themselves to the list.

-

A location service by Google relying on cell towers to estimate your location when GPS is not available.

Why the uncertainty? The My Location feature takes information broadcast from mobile towers near you to approximate your current location on the map – it’s not GPS, but it comes pretty close (approximately 1000m close, on average). We’re still in beta, but we’re excited to launch this feature and are constantly working to improve our coverage and accuracy.

-

Finally, I found this somewhat interesting to me.

“The empirical fact is that people will often switch to strategies they never picked before. They couldn’t have learned these strategies by reinforcement” from experienced rewards, says Camerer. In these situations, people use imagined rewards, or rewards that could have been theirs, to guide their decision making. This process, called fictive learning, is similar to the emotion of regret. “Regret is essentially the bodily sensation or name we give to fictive learning when there was a better choice than the one we chose.”

Posted in Anonymity & Privacy, Crypto, Off-topic, Security | No Comments »