https://news.ycombinator.com/item?id=12089993 … < On WhatsApp not working in Saudi. Calls are filtered by firewall, so the UI just blocks them rather than timeout.
It should be possible to impose much higher cost on attacker's computing resources than on user's BW resources.
-
-
but he merely samples you, that's by definition cheap
-
Deciding whether a stream is plausible non-encrypted data should be computationally expensive. That's the goal.
-
but if you deliver real time high BW enc data, you, by definition move lot of high entropy data. adv'd measure entropy
-
I don't understand how can you make it more expensive than measuring entropy, without sacrificing BW.
-
Let's try to get on the same page. What entropy metric do you have in mind?
-
example metric finds keys, http://blog.dkbza.org/2007/05/scanning-data-for-entropy-anomalies.html … Far from expert, will be happy to understand what I'm missing.
-
prof Orr Dunkleman referred me to https://people.csail.mit.edu/rivest/Chaffing.txt … with linear AONT http://cacr.uwaterloo.ca/~dstinson/papers/AON.ps …
-
still not convinced it'll work, you still have high entropy MAC, but maybe ratio is good enough, AONT is linear
- 1 more reply
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.