----- Forwarded message from Peter Gutmann <[email protected]> -----
From: Peter Gutmann <[email protected]> Date: Wed, 13 Jun 2012 17:26:39 +1200 To: [email protected], [email protected], [email protected], [email protected] Subject: Re: [silk] Flame is Lame Eugen Leitl <[email protected]> quotes: >And suddenly, just like that, the discussion on whether Flame is lame or not >b&vanished. Yeah, because cryptographacamy is magic. The exploit may have used 0day and rootkits and ROP and stealth techniques and self-modifying code and who knows what else, but any five-year-old can do that. However, if there's any cryptographi... cryptograma... magic involved then it had to have been done by sikrit gummint agencies. I'm not saying it was or it wasn't, but I am a bit disturbed at the level of magical thinking that goes with anything involving crypto. There have been some pretty sophisticated attacks on crypto keys in embedded devices for jailbreaking purposes that were done by enthusiastic amateurs, not even the likes of (to pick some random examples of crypto people who've done this before) David Wagner or Ed Felten or Markus Kuhn but just some random guys who decided to give it a go. Looked at another way, if you submitted a paper "Yet another chosen prefix attack on MD5" to Crypto/AsiaCrypt/Eurocrypt, do you think it'd get accepted?. I'm not trying to denigrate the achievement, just to add a little perspective. Peter. ----- End forwarded message ----- -- Eugen* Leitl <a href="http://leitl.org";>leitl</a> http://leitl.org ______________________________________________________________ ICBM: 48.07100, 11.36820 http://www.ativel.com http://postbiota.org 8B29F6BE: 099D 78BA 2FD3 B014 B08A 7779 75B0 2443 8B29 F6BE
