tmsr - Search: " T"

732000+ entries in 0.384s

keonne: He has a very deep and masculine voice though.

keonne: mircea_popescue: I actually havent met Dan Held in person, and my intel is lacking in the hot or not space

keonne: ThickAsThieves: missed opportunity to call it scAMEX

kakobrekla: its crappy unless you are fucking 5 hookers at same time to gather the noise

bounce: asciilifeform: I forgot who mentioned to hook a 10k resistor to a mike in, turn up the gain, and feed that to the entropy pool. how suitable an entropy source is that in your opinion?

bounce: hmm... wonder how those bugs ended up in openssl and gnutls.

dub: damn, if you think of somewhere gribble me, gotta go catch a boat, not sure when ill be back on-grid

nubbins`: vault of satoshi is another, but i think lower volume and they trade in doge, so...

nubbins`: they're the only place i've used in the past, but honestly i don't feel too great about them these days

nubbins`: cavirtex changed their verification rules recently, can't recall the details

nubbins`: you trying to exchange btc for cad?

nubbins`: i know almost all of those words

dub_: ;;later tell nubbins` whats a trusted canukistani buttcoin shop? hashtag lazyweb

asciilifeform has to sleep

asciilifeform: we don't even know (to this standard of proof) if a pill against rsa requires factoring

asciilifeform: it is indeed impossible to prove, with mathematical rigour, damn near anything

kakobrekla: you might just not see the bug

kakobrekla: but it is (near?) impossible to prove its good

asciilifeform: how do you know ... that it is indeed fucked << all crypto hardware, especially of the single-chip variety, is to be thought of as 'guilty until proven innocent'

kakobrekla: so as of now there is no direct evidence "look here rpi is fucked" just a general concern over all products on the shelfs

asciilifeform: i cannot in good conscience recommend anything that is presently available for sale

artifexd: Hence your recommendation to build my own?

kakobrekla: so how do you know, for the particular case of rpi, that it is indeed fucked?

asciilifeform: and on the digits of pi

asciilifeform: i cannot emphasize this enough

asciilifeform: there is no mathematical test for 'evil'

asciilifeform: 'diehard' is just a collection of statistical tests

kakobrekla: and the diehard is exempt from this?

asciilifeform: this and related topics have been beaten to death elsewhere.

asciilifeform: or, when testing prng, any periodicity in the output

asciilifeform: e.g. a bit in a register that's stuck on

asciilifeform: kakobrekla: the statistical tests are for determining sources of 'natural' bias, not enemy action.

asciilifeform: you'll get 'better' stats than any genuine rng.

asciilifeform: run the result through 'diehard'

kakobrekla: how do you eval such result correctly then

asciilifeform: unless the malefactor is dumb as a brick

asciilifeform: no statistical test will reveal a malicious rng

asciilifeform: just as the digits of pi, if run through 'diehard', would.

kakobrekla: i wonder what the numbers will show.

asciilifeform: artifexd: see if you can learn why the raspi rng is unsuitable for cryptography.

artifexd: I've learned that the raspberry pi has a hardware rng. My current plan is to build use that. I'll Von Neumann it if necessary. Regardless, as soon as I get one, I'll use the tools asciilifeform recommended to measure the entropy.

kakobrekla: a well i might have jumped the gun, nothing particularly interesting except for the fact of recognizing the problem.

ozbot: I am going to build a true random number generator ...

decimation: ascii - secret electronic evidence is a perfect fit for the US confession-based legal system

asciilifeform: functional illiteracy rates will go from the current 40% to 80-90%.'

asciilifeform: will be issued by a computer program, in absentia. In keeping with current practice, both the charge and the evidence will be kept secret. The newly minted felons will be dropped from voter rolls, their passports cancelled, their bank accounts confiscated, and their employment (if any) terminated. They will receive form letters informing them of their sentence but most of them will be unable to read it because

asciilifeform: 'With small businesses and private enterprise made illegal, most people will be forced to resort to illegal activities, under the watchful eye of the NSA. But since putting even more people in jail will be prohibitively expensive, a new, streamlined process of dispensing justice will be put into place: the NSA and the Justice Department will link computer systems, and verdicts of fraud and suspended sentences

decimation: did you use orcad or some free cad to design the board? are you a fan of eagle?

decimation: unless you ghetto-stack the boards :)

decimation: impossible if it's more than 2 layers

asciilifeform: but it isn't a good use of time

decimation: well, yeah and the drilling of the holes and inserting of vias would be very difficult by hand on your own board

asciilifeform: that too

asciilifeform: i'd have baked the rng pcbs personally, but on account of them being analogue devices, you can't really characterize them unless you use the same board materials as the final product.

asciilifeform: (i used to. 8 mil and smaller, easy. same process as b&w photography)

asciilifeform: one can trivially make boards by hand

asciilifeform: there's the occasional 'via' that isn't

MisterE: it's the super small micro traces that can be problemetic eh?

asciilifeform: as is traditional

decimation: what was your smallest trace pitch? 8 mil?

decimation: so just like the us is willing to pay "abused" mexicans to live in palo alto, china is willing to pay to host your factory

asciilifeform: nothing in this particular product is the least bit exotic.

MisterE: hope the delivered quality is acceptable

asciilifeform: now, i hesitate to recommend them 'for everyone' - all i've had done there, is very simple boards.

asciilifeform: everything seems to go on the very next flight, straight to where it is supposed to go.

asciilifeform: phoenix ships 'for free' (well, rolled into the price at any rate)

decimation: I guess this is why it only costs $1 to ship anything from hong kong

asciilifeform: don't believe? visit the web site of any u.s. pcb maker. they're all decorated with pictures of rockets, tanks, etc

asciilifeform: (even they try to go chinese, when they can get away with it)

asciilifeform: at this point nobody has pcbs made in usa except for military contractors

decimation: surely labor doesn't account for that difference

asciilifeform: for roughly the same quality.

asciilifeform: it was 35x the cost.

decimation: what made you choose "hu bei gold phoenix" for the pcb house? cheap?

asciilifeform: Mats_cd03: how long it will take to go from blueprints to production line is not yet known to me

asciilifeform: that. and we intend to switch part vendors liberally.

decimation: thus, the encouragement for personal inspection & analysis, I presume?

asciilifeform: decimation: (as i will detail at a later time) i am expecting the supply chain to be fucked with

Mats_cd03: do you think theyll be available for purchase in three months

decimation: I suppose there is very little that an enemy could do to diddle with it

asciilifeform: consider the purpose of the product.

asciilifeform: did you actually think i would personally bake every unit ?

asciilifeform: decimation: for the production run - certainly

decimation: ascii surely you aren't going to do all the soldering yourself? are you going to use a production house?

asciilifeform: the ones in the pic haven't their shields yet.

asciilifeform: though, interestingly, this has not been proven rigoriously.

asciilifeform: the one other useful fact is that entropy of (bad rng) xor (better rng) is equal to that of (better rng)

artifexd: What kind of rng will the cardano use?

decimation: one cannot say that it makes the output less predictably, anway

asciilifeform: no prizes for describing what this does to the output, statistically speaking

asciilifeform: (as usg wants you to, see 'fips')

asciilifeform: don't be the schmuck who builds rng which throws away batches of bits that fail some test ☟︎

gribble: Diehard tests - Wikipedia, the free encyclopedia: <http://en.wikipedia.org/wiki/Diehard_tests>; The Marsaglia Random Number CDROM including the Diehard ...: <http://stat.fsu.edu/pub/diehard/>; Robert G. Brown's General Tools Page - Duke Physics: <http://www.phy.duke.edu/~rgb/General/dieharder.php>

asciilifeform: ;;google diehard rng tests

artifexd: Is there a standard test?

asciilifeform: artifexd: rng must be periodically tested

artifexd: My understanding is that they slowly start generating less random numbers.

asciilifeform: (does it die silently? what happens to output?)

asciilifeform: when building rng, consider what is to happen when it fails.

artifexd: reverse biased diode? geiger counter? Something like that?