On Thu, 11 Sep 2008, [EMAIL PROTECTED] wrote: > Just off the top of my head (I have to check the SSH protocol yet): > Why not encipher all accumulated keystrokes up to the <Enter> key as a > block send them instead of sending each keystroke as it is typed? This > shrouds the typist's characteristics.
Then we wouldn't be able to play nethack over ssh. > In addition, if the cipher is a block cipher, padding is added to make > the number of bits a multiple of the block size. Mandatory padding > with a nonce may help to shroud the number of keystrokes. We already pad, and add extra random padding when echo is off - which is when a user is most likely to be typing in a password. > The drawback is that the padding part could mean that we are no longer > compatible with the SSH protocol. Actually we are. -d
