On Sun, 11 Jan 2004 23:10:47 EST, "Stephen D. Williams" said: > OTP absolutely requires that you share the OTP out of band, i.e. you > twin a capture of random data. Any transfer makes it as vulnerable as > the transfer method. The single most common OTP-related offense of Schneier's "snake oil crypto" has got to be the fact it's almost never only used exactly once and then discarded. So sure you can load 200 meg of OTP into the dongle before you leave the spy agency on a mission. The fun starts when you get to the 201st megabyte of data. :)
Attachment:
pgp355015.pgp
Description: PGP signature
Follow-Ups:
- Re: High Quality Random sources, was: Re: SecuriKeyStephen D. Williams
- SecuriKeyHunt, Adam
- High Quality Random sources, was: Re: SecuriKeyStephen D. Williams
- Re: High Quality Random sources, was: Re: SecuriKeytabris
- Re: High Quality Random sources, was: Re: SecuriKeytabris
- Re: High Quality Random sources, was: Re: SecuriKeyStephen D. Williams
- Prev by Date: Re: 2.6.1-mm2 (compile stats)
- Next by Date: Re: [discuss] Re: kgdb for x86_64 2.6 kernels
- Previous by thread: Re: High Quality Random sources, was: Re: SecuriKey
- Next by thread: Re: High Quality Random sources, was: Re: SecuriKey
- Indexes:[Main][Thread]