Re: 128-bit support

1999-12-01 Thread Enzo Michelangeli
- Original Message - From: David Honig <[EMAIL PROTECTED]> To: Bill Stewart <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]> Sent: Wednesday, December 01, 1999 5:40 Subject: Re: 128-bit support > Way too funny. India recommends *not* using american security > software. Spe

rate of finding collisions

1999-12-01 Thread staym
On average, you'll find one N-bit collision after looking at O(2^(N/2)) random N-bit strings; how long does it take, on average, to find k collisions? O(k*2^(N/2))? -- Mike Stay Programmer / Crypto guy AccessData Corp. mailto:[EMAIL PROTECTED]

Re: rate of finding collisions

1999-12-01 Thread staym
I wrote: >O(k*2^(N/2))? It has to be faster than that by a counting argument. How much faster? -- Mike Stay Programmer / Crypto guy AccessData Corp. mailto:[EMAIL PROTECTED]

Thawte "SuperCerts"

1999-12-01 Thread Marcus Leech
The Thawte folks are busily promoting their "SuperCerts" which enable 128-bit symmetric modes in "International" versions of the various browsers. I guess I've been out of touch--is there an extension in web certs that enables better than 40-bit symmetric SSL modes? My assumption has always

Re: 128-bit support

1999-12-01 Thread David Honig
At 07:35 PM 12/1/99 +0800, Enzo Michelangeli wrote: >- Original Message - >From: David Honig <[EMAIL PROTECTED]> >To: Bill Stewart <[EMAIL PROTECTED]>; <[EMAIL PROTECTED]>; ><[EMAIL PROTECTED]> >Sent: Wednesday, December 01, 1999 5:40 >Subject: Re: 128-bit support > > >> Way too funny. In

Re: Thawte "SuperCerts"

1999-12-01 Thread Steven M. Bellovin
In message <[EMAIL PROTECTED]>, "Marcus Leech" writes: > The Thawte folks are busily promoting their "SuperCerts" which enable > 128-bit > symmetric modes in "International" versions of the various browsers. > > I guess I've been out of touch--is there an extension in web certs that > enables >

The Australian Parliament passes ASIO bill

1999-12-01 Thread eugene.leitl
From: "Harvey Newstrom" <[EMAIL PROTECTED]> 26/11/99 05:41 The Australian Parliament passes ASIO bill William Maher, Newswire Parliament has passed laws that allow the Australian Security Intelligence Organisation (ASIO) to tap into and alter data on private computer systems. The ASIO Am

Re: rate of finding collisions

1999-12-01 Thread Matt Crawford
> On average, you'll find one N-bit collision after looking at O(2^(N/2)) > random N-bit strings; how long does it take, on average, to find k > collisions? O(k*2^(N/2))? Assuming you mean k pairs, not one item repeated k times, I believe the answer is sqrt(pi*N/2) * 2^(N/2).

Re: rate of finding collisions

1999-12-01 Thread Ian Goldberg
In article <[EMAIL PROTECTED]>, <[EMAIL PROTECTED]> wrote: >I wrote: >>O(k*2^(N/2))? > >It has to be faster than that by a counting argument. How much faster? O(sqrt(k * 2^N)) = O(sqrt(k) * 2^(N/2)) The expected number of collisions you get if you sample S items out of a universe of size U (=2

Re: Thawte "SuperCerts"

1999-12-01 Thread Matthew Hamrick
-BEGIN PGP SIGNED MESSAGE- Hash: SHA1 Marcus, Yes, this is a feature referred to as "step up" or "server gated crypto." The idea is that as an application developer, you provide an application that typically only allows export grade ciphers. Upon presentation of a particular "super ce

Semantic Forests, from CWD (fwd)

1999-12-01 Thread Udhay Shankar N
>From: [EMAIL PROTECTED] >Date: Wed, 1 Dec 1999 15:18:43 -0500 >To: undisclosed-recipients: ; > >CyberWire Dispatch // (c) Copyright 1999 // November 30 >Sender: [EMAIL PROTECTED] >Precedence: bulk >X-Loop: [EMAIL PROTECTED] > >Jacking in from the "Sticks and Stones" Port: > > >By Suelette Dreyfu

Re: Thawte "SuperCerts"

1999-12-01 Thread Greg Broiles
On Wed, Dec 01, 1999 at 02:36:46PM -0500, Steven M. Bellovin wrote: > In message <[EMAIL PROTECTED]>, "Marcus Leech" writes: > > The Thawte folks are busily promoting their "SuperCerts" which enable > > 128-bit > > symmetric modes in "International" versions of the various browsers. > > > > I g

Re: Thawte "SuperCerts"

1999-12-01 Thread Steven M. Bellovin
In message <00ee01bf3c40$08c1df00$[EMAIL PROTECTED]>, "Matthew Ham rick" writes: > This moves the problem of what gets > exported from the application developer to the CA issuing the super > cert. While I'm not sure, I'm guessing that VeriSign can't issue a > super cert to Uncle Saddam, but Thawte

Re: 128-bit support

1999-12-01 Thread Bill Stewart
At 07:35 PM 12/01/1999 +0800, Enzo Michelangeli wrote: >Speaking about which: isn't Certification Authority software subject to EAR >export controls? I'm asking because Hongkong Post (the Hong Kong Post >Office) has announced that they will start to offer CA services (being in >fact the first lega

Re: Thawte "SuperCerts"

1999-12-01 Thread Radia Perlman - Boston Center for Networking
I'd heard that unlike the trusted certifiers for regular certificates, that the certifiers trusted for "step-up" certificates couldn't be configured. This makes sense for the govt to insist on this, since if you can add certifiers to your browser that issue step-up certs, then it becomes really ea

Re: Thawte "SuperCerts"

1999-12-01 Thread Marcus Leech
Radia Perlman - Boston Center for Networking wrote: > > So since Thawte is advertising this, there must be a new version of > IE and Netscape that recognize Thawte as an issuer of step-up certs. > Which must mean that the US govt has approved Thawte (so that they > allow export of browsers that r

Universal Quantum Computers

1999-12-01 Thread Ben Laurie
People may be interested in last week's Nature article, D. Gottesman and I.L. Chuang, "Demonstrating the viability of universal quantum computation using teleportation and single-qubit operations", Nature 402, 390-392. One thing that should make software authors jump for joy is that the method in

Re: Universal Quantum Computers

1999-12-01 Thread Stanley J Houghton
I realise it was a comment in jest but this area is more significant than many of us may think. If quantum computation comes of age, cryptography will have to change enormously since we are faced with potential new technology that overcomes classical limits underlying cryptographic systems, eg

Siemens German Digital Signature Chip Hacked

1999-12-01 Thread Martin Minow
The Register reports that the Siemens Digital Signature Chip used for cashless payments (and recently ratified for use by the European Union) was disassembled. According to The Register's sources, "the knowledge gained has already been used to get hold of Telesec pri

Re: Thawte "SuperCerts"

1999-12-01 Thread EKR
"Marcus Leech" <[EMAIL PROTECTED]> writes: > I'd totally forgotten about SGC (Server Gated Crypto), which is why the > Thawte > stuff kind of surprised me. I guess I'd simply erected some kind of > mental block about SGC or something... I can see why you would want to do that. > At their web

Re: Thawte "SuperCerts"

1999-12-01 Thread Steven M. Bellovin
In message <[EMAIL PROTECTED]>, EKR writes: > I'm assuming it's compiled into the code, since if it were in the > cert database, it could be tampered with. Sure -- just like Fortify can't exist... --Steve Bellovin