-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
Moin,
On Wednesday 30 August 2006 19:44, Gregory Maxwell wrote:
On 8/30/06, Tels nospam-abuse@bloodgate.com wrote:
So, if you can't guarantee that the hashes of the IP (including the log) don't leak out, how can you guarantee that the secret doesn't leak out? Answer: You can't.
The only safe way to not leak these information out is not even to store them.
Silly, you store the hashes but not the secret.
The machine doing the hashes needs to know the secret and to make a meaningfull analysis, you can't change it. (Well, maybe you could change it once a month).
Still the secret is there and it can be leaked, subpoenaed or just plain be sent out by a SNAFU.
best wishes,
tels
- -- Signed on Thu Aug 31 07:46:25 2006 with key 0x93B84C15. Visit my photo gallery at http://bloodgate.com/photos/ PGP key on http://bloodgate.com/tels.asc or per email.
"Naturally the parameter and boundary of their respective position and magnitude are naturally determinable up to the limits of possible measurement as stated by the general quantum hypothesis and Heisenberg's uncertainty principle, but this indeterminacy in precise value is not a consequence of quantum uncertainty. What this illustrates is that in relation to indeterminacy in precise physical magnitude, the micro and macroscopic are inextricably linked, both being a part of the same parcel, rather than just a case of the former underlying and contributing to the latter." -- Peter Lynd