asciilifeform: this is instructive example of what i was speaking of earlier.

asciilifeform: ty mircea_popescu .

asciilifeform: THERE we go.

asciilifeform: aha

asciilifeform: i was speaking of dpa.

asciilifeform: sop since 1920s

asciilifeform: that's the 'fingerprint of how it types' thread

asciilifeform: nope

asciilifeform: by making the machine draw same current regardless of what keys are pressed, or if any are

asciilifeform: where they countered differential power analysis

asciilifeform: mircea_popescu: do you perchance have the link to the sov typewriter thread ?

asciilifeform: mircea_popescu: running safety-critical code on pc ~is~ a hack, and there is no way fully around it except to burn the pc.

asciilifeform: the job of the algo is to perform same count of 'ideal cpu, no cache, all instr take the cycle count printed in the book' instructions per sig verif.

asciilifeform: (e.g., i cannot know the rate at which mircea_popescu's reactor control card throws interrupts, or how many cpu core he has to handle them with, etc.)

asciilifeform: mircea_popescu: the ceiling is necessarily machine-specific

asciilifeform: if enemy can make it happen every second, programmer is a tard and ought to be fed to pigs.

asciilifeform: if this happens, interval is bumped up.

asciilifeform: time := max(time it EVER took)

asciilifeform: clock.

asciilifeform: and calculation ~never~ returns a result prior to interval elapsing.

asciilifeform: mircea_popescu: which is why you determine a ceiling (longest conceivable interval, assuming every single ram access is a cache miss, etc.)

asciilifeform: cache, incidentally, is controllable at least on amd.

asciilifeform: but even on pc you can make a hard ceiling.

asciilifeform: mircea_popescu: my proposal included a device for gateway 'line rate crypto', recall.

asciilifeform: mircea_popescu: on embedded cpu, with cache switched off, interrupts off - quite certainly, yes, known cycle count.

asciilifeform: my understanding is based in this exercise having been my profession.

asciilifeform: there are no magic cases.

asciilifeform: and can be placed in a limit of C cycles for n-bit rsa, say.

asciilifeform: verifying a sig is not rocket surgery.

asciilifeform: no uh.

asciilifeform: period.

asciilifeform: algo takes C cycles.

asciilifeform: no errors.

asciilifeform: whether for univac or pc.

asciilifeform: just like any other proggy.

asciilifeform: it solves if the hands do not grow from the arse.

asciilifeform: then you catch the author of the code, hang him upside-down, and beat with a long bamboo pole.

asciilifeform: solves the differential timing problem strictly.

asciilifeform: phf: are you changing the oil in the thing as we speak, or wat

asciilifeform: *it is

asciilifeform: http://btcbase.org/log/2016-08-26#1529877 << timing can be 'ceilinged' and it solves problem. but i am still chewing on the problem of enemy being able to determine who is speaking to whom by deriving the public keys. (this is trivial with rsa, and i've been working on answering the q of whether is is also true for c-s) ☝︎☟︎

asciilifeform: why am i reading a chronicle of some dude cleaning his fridge, BingoBoingo ?

asciilifeform: it is general in the sense where, if you include it, 'sybil' is no longer meaningful concept

asciilifeform: http://btcbase.org/log/2016-08-26#1529874 << the general solution is wot + nothing-to-allcomers. ☝︎

asciilifeform: and where i go off to find some reference implementation of c-s, and discover, later, that none exists

asciilifeform: ok finally found the thread where mircea_popescu prods me to remember chosen-ciphertext/timing attack, http://btcbase.org/log/2015-11-28#1332988 ☝︎

asciilifeform: i did also, but quit 2wks in, in disgust

asciilifeform: it is not entirely related to subj but still interesting.

asciilifeform: phf: i reread that piece just a few days ago

asciilifeform: https://archive.is/iLrq1 << more to the point

asciilifeform: ^ tor org removed ENTIRE board except for the veteran nsa stooge

asciilifeform: meanwhile, in heathendom: https://archive.is/g1hX0

asciilifeform: *yes

asciilifeform: phf: if you're deciphering and putting result (in the 'yes' or 'fail' sense) somewhere enemy can see it - then eys.

asciilifeform: (not produced here, naturally, but reignited from ashes)

asciilifeform: produced wholesale - no. gpg would probably be the closest to this, to date.

asciilifeform: and we are living with pdp arch long past its expiration date.

asciilifeform: c lang, for instance, was a 'great thing', until it wasn't.

asciilifeform: phf: ~no one every does, until it is far too late.

asciilifeform: in usaschwitz.

asciilifeform: divorced engineers - live on catfood.

asciilifeform: http://btcbase.org/log/2016-08-26#1529755 << and buffett pays ~0 tax, aha ☝︎

asciilifeform: http://btcbase.org/log/2016-08-26#1529727 << afaik this is definitionally true, at least in the zoological world where the terms originated ☝︎

asciilifeform: *chosen-ciphertext

asciilifeform: ~everyone here, phf, asciilifeform, mircea_popescu, et al, has his own chamber of unreleased horrors. this is right and proper.

asciilifeform: but they ought not to complain when 'my tcp connections are blackholing' or 'someone derived my rsa privkey using known-ciphertext attacks' etc.

asciilifeform: http://btcbase.org/log/2016-08-26#1529722 << nothing i wrote ought to discourage folks from pissing on the electric fence. ☝︎

asciilifeform bbl, fixing some plumbing.

asciilifeform: a great many x11 proggies i use run on remote machines. and i have NO intention of partaking in the 'own one computer' horseshit.

asciilifeform: and regard anyone who advocates it as a procrustes.

asciilifeform: i.e. i have 0 interest in 'like x11 but without network pipe'

asciilifeform: phf: my published positions re x11 concern the machines ~i presently use~

asciilifeform: i dun even recall a debate. there was gabriel_laddel proposing to build hybrid of bulldog and rhino, 'lisp machine with linux', a mengelian atrocity with no future, because a foundation cannot be corrected any more than one can un-drop a baby.

asciilifeform: link ?

asciilifeform: hm?

asciilifeform: and cannot be retro-corrected.

asciilifeform: they matter.

asciilifeform: FOUNDATIONS FIRST

asciilifeform: i am on same side as i've been since '07

asciilifeform: mno.

asciilifeform: in actual practice, not.

asciilifeform: as a teaching tool, hearts and livers are separable.

asciilifeform: these are not separable.

asciilifeform: as an only sane possible replacement for tcp.

asciilifeform: it is about gossip.

asciilifeform: which - yes - matters, and no, cannot be replaced later.

asciilifeform: bottom.

asciilifeform: (fuck sequence numbers. instead, 'raptor code'.)

asciilifeform: nor the 'order of packets does ~not matter' aspect.

asciilifeform: i do not regard it as minor.

asciilifeform: phf: the handful of interesting aspects (single-packet friend-or-foe, no tcp) were outlined here.

asciilifeform: mircea_popescu, as often happens, had correct idea, but was not aware of the sheer rot of the available building blocks.

asciilifeform: (and i will point out that i started on my concept long before mircea_popescu wrote it.) ☟︎

asciilifeform: current spec is imho only worth something as a starting point.

asciilifeform: phf: correct.

asciilifeform: likewise a gossip node ought never to rely on a single entry point. and certainly not on a single ~published~ entry point.

asciilifeform: and there are no sybils, even as a theoretical item, in a correct gossiptron - every receiver knows exactly who (pubkey-wise) has any business transmitting to it, and rejects packet that is malformed, replayed, or signed with ANY other key, in constant time.

asciilifeform: the cost of validation in a single-packet-authenticating protocol where you crunch the numbers at line speed is effectively 0.

asciilifeform: to kindergarten pupils.

asciilifeform: but it was ~always~ possible, from day1 of tcp, and this is evident to anyone with a copy of, e.g, richard stevens's 'tcp/ip illustrated'.