tmsr - Search: " T"

665700+ entries in 0.39s

Rassah: Oh, one other answer (one of the techs is awake): We know we're getting sram because we are physically reading it.

Rassah: Initially the idea was: Write a salt onto the stick. Then generate key = H(H(entropy_1) + salt) + H(H(entropy_2) + salt), and print all of [key, salt, H(e1), H(H(e1) + salt), H(e2), H(H(e2) + salt)]. (+ could be arithmetic addition or XOR; either should be fine.) The user can then verify exactly one of the outer hashes on an insecure computer, and can verify the additions by hand (literally, pen and paper, no computer)

Rassah: key = H(salt||H(entropy)) with H(entropy) on a second sheet of paper so the user can verify it... or something

Rassah: Yes. If you plug tis device into your PC while holding down the button, it shows up in "flash mode", where instead of just a USB stick with a JPG on it, you get to see all the system and settings files. One of those files is a user provded sald (like diceware) that will be combined with the rest of the entropy sources to produce the final key

Rassah: I mean the chip and the hardware has a lot of stuff in there. The entropy is altready there, but initially we figured the SRAM chip was overkill. The "software adding entropy" meaning we just add more code to grab entropy from more hardware and user sources

Rassah: mircea_popescu: No, the hardware design is finished. Changes are only in software. Initial method of creating keys is done, we are just adding software patches to add more and more entropy sources to this thing.

mircea_popescu: this is a poor fit for the application.

asciilifeform: Rassah: ever encounter the concept of 'auditability' ?

mircea_popescu: atmel is a us producer of black box transistor boxes.

mircea_popescu: Rassah as in i get the impression things may change or w/e. anyway.

Rassah: Is Atmel really that untrustworthy? Is there a better option?

mircea_popescu: asciilifeform no, this is your punishment for xmas.

mircea_popescu: this doesn't sound terribly mature somehow.

Rassah: So, we won't be relying on Atmel's RNG, and will be reading their SRAM directly

Rassah: Ah, got a eply. Seems we'll be using he Atmel provided SRAM after all. And "We will be doing our own analysis of data from several chips, and provide a raw entropy file for those who want to do their own for their specific device." combined with "option to enter a user-supllied salt"

mircea_popescu: so it's using an atmel micro but not for the trng ?

kakobrekla: Rassah why dont you get people who are actually doing this thing here before you do more damage?

Rassah: asciilifeform: this device was designed and assembled by the people workin on the bitcoincard. They all know hardware extremely wel

Rassah: Sorry for the line spam

mircea_popescu: Rassah try a pastebin srsly.

Rassah: the processor, but it's there and is probably perfectly fine and

Rassah: - the built-in TRNG; nobody trusts these things anymore as primary

Rassah: We can also add secondary sources to the mix:

Rassah: is taken from a different SRAM area every time.

Rassah: other 19/20th are stuck is much lower. Especially if the stored part

Rassah: unlikely; the probability that 1/20th of the SRAM behaves fine and the

Rassah: than we need, we can afford it. This memory effect is already very

Rassah: compare it on the next run. Since we have about 30 times more entropy

Rassah: We can store part of the raw entropy into non-volatile memory and

asciilifeform: mircea_popescu: somebody had to crap out the physical unit.

mircea_popescu: asciilifeform i personally doubt anyone with hardware understanding touched the design, but then again how would i know.

asciilifeform: Rassah, mircea_popescu: then one last question, for if/when he does. value of adjacent sram cells is correlated. what, if anything, was done about this? (my guess - nothing but the usual 'whitening'.)

Rassah: In our tests, it still had plenty of entropy at 0ºC, but it smoothly went down to zero entropy around -20º. Maybe we should put warning stickers on these things saying "Caution - Chaotic System. Do not use in low entropy environments above the Arctic or below the Antarctic circle, unless exposed to external sources of energy" :) ☟︎

mircea_popescu: but things get escalated and magnified.

mircea_popescu: people have tried this "i'm the pr, i'll pass q's along" thing before, it never works well, not necessarily through anyone's specific fault,

mircea_popescu: Rassah probably the better avenue would be for the graybeard in charge to show up here

asciilifeform: Rassah: what, if anything, does your product do to verify that rng is actually functioning 'as rated' before bits are used in anger?

asciilifeform: Rassah: other question. in my own experiments, i found that sram powerup 'static' depends heavily on the die's temperature.

Rassah: I asked and can relay the Atmel/sram question. I think they are al asleep right now, since they're in Austria

Rassah: asciilifeform: No, that would be a few of the Mycelium devs. They described a lot of it to me, since I'm working with them (I'm the one doing the public interraction thing, and running Indiegogo and such)

asciilifeform: Rassah: I think << you are not the designer of this item ?

Rassah: I think standalone sram

asciilifeform: Rassah: generated only from SRAM << your code reads a standalone sram? or atmel claims to produce rng output this way inside a black box micro ?

Rassah: You can check what the software calls for

Rassah: asciilifeform: Atmel SAM4L series running the software, with random number being generated only from SRAM, in combinaton with other things we're considering, like a salt you can add in a TXT file ☟︎

asciilifeform: Rassah: what must one do to verify - without a shade of doubt, in personal laboratory - that your device works as described?

mircea_popescu: Rassah is this thing atmel based ?

Rassah: Basically an extremely high level entropy generator that uses that entropy to make secure paper walets

Rassah: It's a USB stick that you stick into your priner's USB port, it detects a photo, and you hit print, making your printer print a bicoin paper wallet that's never been exposed to the web. Soon as you pull the stick out, the keys are gone for ever

mircea_popescu: gotta find more humane ways to cut the gourd ?

mircea_popescu: anyway, i still don't know what it is or what's to go gaga over.

gribble: bitcoinpete was last seen in #bitcoin-assets 3 hours, 16 minutes, and 52 seconds ago: <bitcoinpete> Rassah: neat rating comment from theymos "Holds BTC for the forum."

Rassah: Though if he just bloggs, I'm not sure if that will be worth our time or money

Rassah: The only ones on Reddit who brought up issues were the ones I know to have technical backgrounds (sluch, peter todd, a few others who backed up their concerns with actual technical questions). Most everyone else just went gaga over it. I kinda assumed BitcoinPete knew something about cryptography and security, considering his statement, followed by me asking if he'd be interested in doing an audit for us, and him agreeing.

empyex: FabianB: Proxies: http://mpex.coinbr.com/ http://mpex.co/ MPEx-Status: Error reaching trade engine (change: $proxies <newlist>)

mircea_popescu: or on the internet. or 20. or having a bad day. or w/e.

Rassah: mircea_popescu: Typicall they are one and the same. It's rare that people who dn't know whit about a topic shit all over it. Unless they're politicians

mircea_popescu: footnote 5 prolly of most interest to you

assbot: Cardano : Xmas blown, other statements pe Trilema - Un blog de Mircea Popescu.

mircea_popescu: wait. were you looking for people with tech expertise or with complaint expertise ?

gabriel_laddel: mircea_popescu: Is your express purpose for the cam video to get people like Nick Szabo and Taleb to join #-assets?

Rassah: so tech knowledge enough to be able to check how the software works, and maybe hardware knowledge to know what chips are being used in the schematic

mircea_popescu: i guess asciilifeform is the guy who's done most re entropy.

Rassah: Basically, we have people with reservations about the randomness and security of our entropy devices, despite not actually knowing how it works, and we are hoping to get some of tose people to back up their claims

mircea_popescu: whoa look, bitcoinpete's only been rated since march huh. how time flies.

mircea_popescu: Rassah tech knowledge in what field ?

mircea_popescu: but still. to reside somewhere must mean you own some real estate.

Rassah: Peter Todd will be doing an audit too, ad I was hping Bitcoin Pete was someone with some technical knowledge or something

gabriel_laddel: they spend a lot on the homeless every year in SF. I imagine that when they hand it out they sort out the papers for these 'people'.

Rassah: Huh. He's actually the reason I'm in here in the first place. I followed his blog here, after he tweeted that Mycelium Entropy < dice, and agreed once I asked him if he would be interested in auditing out device.

mircea_popescu: http://littlegreenfootballs.com/page/304046_Startup_CEO_Dudebro_Wishes_Deg << someone needs to explain to me how homeless people can be residents of san francisco.

gribble: WARNING: Currently not authenticated. Trust relationship from user mircea_popescu to user bitcoinpete: Level 1: 2, Level 2: 7 via 8 connections. Graph: http://b-otc.com/stg?source=mircea_popescu&dest=bitcoinpete | WoT data: http://b-otc.com/vrd?nick=bitcoinpete | Rated since: Fri Mar 28 09:14:47 2014

Rassah: Hey, can you guys tell me who BitcoinPete is?

mircea_popescu: Rassah the key sharing thing is braindamaged.

Rassah: Basically, pools with 50% mining power are better than individuals with 50% mining power, and some ideas seem to make us trend to 50% owned by individuals

Rassah: then we have individuals that actually do control that mining power. Badly alligned incentives...

Rassah: I am especially concerned about the one where mining in a pool is made difficult to impossible by making sharing a secret key that lets the miner steal all coins a requirement. The way I see it is, we either have pools that concentrate mining power, but don't actually own or control that power, or we create incentives for individuals to amass tons of mining power, since being a smal miner or as part of a pool is impossible, and

Rassah: A lot of the whole "How can we fix 51% attacks" suggestions are really horrible...

mircea_popescu: i'd love nothing more than to push a p2pool.

Rassah: It was not 5 minutes, it was more like a long slog into the dumps

mircea_popescu: p2pool sadly has some lingering tech issues. for years now.

fluffypony: so Petamine made a BIG fuss about moving to p2pool

mircea_popescu: was this 5 minutes before or 5 minutes after their public image got wrecked ?

mircea_popescu: lol wait, the bf is not interested in a public image anymore ?

Rassah: ThickAsThieves: but how to apply this logic to Ploshay? Ploshay was well liked, and was like the "popular girl" or whatever, elected during a very public election when the BF was still something the general public was interested in, and when BF was still interested in a public image

mircea_popescu: reddit discovers things.

ThickAsThieves: <+Rassah> Anyone ever wonder how the hell Brock, whom no one knew much about, got elected to the BF board, when the public either does't know him or hates his guts? To me that says connections of some sort... /// but how to apply this logic to Ploshay?

pankkake: that wsan't rape, that was ironic sex!

pankkake: Scott Kveton is the CEO of Urban Airship, a mobile services platform provider in Portland, Oregon <= CEO, "urban", "mobile services", "portland"

assbot: Police Investigating Star Tech CEO Over Multiple Rape Allegations

mircea_popescu: Rassah you figured wrong. tieing your ability to sign to bitcoin is a step in the wrong direction.

pankkake: using bitcoin forces you to a lower level that is quite inconvenient

pankkake: pgp offers more than signing, and has an entirely different paradigm. identity has multiple signing and encryption keys; you trust the identity

Rassah: It's supported by bitcoind, blockchain.info, Armory, Mycelium, and probably many others. I figured bitcoin message signing is a step in the right direction, because not many are working on making PGP keys secure as hell, but tons of people are woking on making Bitcoin keys secure as hell, and easy to use from wallets. Otherwise I don't know what the difference in implementation is between PGP and BTC signing

mircea_popescu: leaving aside all the 500 other problems with the idea, why would you want to centralise things ?

mircea_popescu: no, i'm not going to support a braindamaged half baked re-implementation of pgp in bitcoind.

Rassah: For instance, at the conference

mircea_popescu: Rassah i have no idea what you just asked. what php keys, and where would i accomodate them ?

Rassah: Is that in any way something you accomodate?

Rassah: mircea_popescu: I noticed you rely a lot on PHP... I've been treating my PHP keys like disposable tissues, and relyig on bitcoin message signing instead...