0xabad1dea

Dual EC, The Saga Continues: BUT MAYBE I’M BIASED

Bla bla bla this is my personal opinion bla bla bla.

Patents. Can’t live with violating them, can’t live without violating them. The entire concept of patented cryptography is a bit beyond what I have the energy to deal with right now. Whatever. We’re going in.

It didn’t click with me yesterday, reading the crypto news, that I had already quoted one Dan Brown with whom we are now concerned. No, not the one who wrote the novels. One of the other ones. I cited him in my timeline of trying to reconstruct where and when exactly Dual EC DRBG went so wrong. Specifically, the paper has a casual mention (bottom of page 7) that the proof of security relies on initialization value Q being random, because if it is not random, an adversary in-the-know can recover the prestates and everything’s downhill from there. Therefore – and I quote – it is generally preferable for Q to be c

eligrey

Eli's leak list

The following entities have either sold or leaked personal data about me, including email addresses and phone numbers. Be wary of sharing your data with them.

Email addresses

These entities have either sold or leaked specific unique email addresses of mine to unauthorized parties, such as spammers.

tangrs

#!/bin/sh
# Convert a raw binary image into an ELF file suitable for loading into a disassembler

cat > raw$$.ld <<EOF
SECTIONS
{
EOF

echo " . = $3;" >> raw$$.ld

daeken

• Intro
  • Mindset
    • Break all the things
  • Understanding is key
    • Security people are the most diverse in tech for that reason
• Web security
  • Tools
    • Burp
  • XSS
  • CSRF

judofyr

; Printing stuff to the screen
; by Markus Persson

#macro clear(color) {
	push(a)
	set a, color
	shl a, 8
	bor a, 0x20
	mem_fill(0x8000, 0x180, a)
	set [screen_p], 0

rmmh

DCPU-16 Spec Suggestions

1. Evaluate b before a

---

This makes instructions that address the stack twice meaningful instead of confusing and useless.

ADD PEEK, POP should pop the top of the stack and add it to the second entry, but currently the PEEK is evaluated before the POP occurs.

2. Add [SP+next word] addressing

Gozala

// Lack of tail call optimization in JS
var sum = function(x, y) {
  return y > 0 ? sum(x + 1, y - 1) :
         y < 0 ? sum(x - 1, y + 1) :
         x
}

sum(20, 100000) // => RangeError: Maximum call stack size exceeded

// Using workaround

robotlolita

Module collection
  Interface Iterator<C<E>>
    next        :: (E, C<E> -> Ignored Any) -> Promise
    exhausted_p :: () -> Bool

  Interface Traversable<C<E>>
    each :: C<E>, (E, C<E> -> Ignored Any) -> Undefined

  Interface Building<C<E>>
    add     :: C<E>, value:E -> C<E>

dherman

// inspired by https://github.com/raganwald/homoiconic/blob/master/2011/11/sans-titre.md#readme
// and by https://groups.google.com/a/dartlang.org/group/misc/browse_thread/thread/611c04100ac17142

// traditional method chaining with combinators:
console.log(range(1, 3)
              .concat(range(4, 6))
              .map(function(x) { return x * x })
              .filter(function(x) { return x % 2 === 0 })
              .reverse());

robotlolita

### core.harm --- Harmonia's core library
# 
# This module provides the core functions from Harmonia implemented in
# Harmonia itself.

# Booleans are just plain functions, receiving two function bodies and
# calling the appropriate one.
let true [a {}, b {}] {
  call a
};