From: “Perry E. Metzger” <pmetzger@lehman.com>
To: cypherpunks@toad.com
Message Hash: 96781158afa14ea9c36583d1ceedcbb811a4b3bb55c9b167d920e30473d4a53e
Message ID: <9307151405.AA05028@snark.shearson.com>
Reply To: <9307150536.AA03891@triton.unm.edu>
UTC Datetime: 1993-07-15 14:05:31 UTC
Raw Date: Thu, 15 Jul 93 07:05:31 PDT
From: "Perry E. Metzger" <pmetzger@lehman.com>
Date: Thu, 15 Jul 93 07:05:31 PDT
To: cypherpunks@toad.com
Subject: Re: xor data hiding?
In-Reply-To: <9307150536.AA03891@triton.unm.edu>
Message-ID: <9307151405.AA05028@snark.shearson.com>
MIME-Version: 1.0
Content-Type: text/plain
J. Michael Diehl <mdiehl@triton.unm.edu> says:
> According to Perry E. Metzger:
> > J. Michael Diehl <mdiehl@triton.unm.edu> says:
> > > According to Douglas Sinclair:
> > > The point wasn't to be unbreakably secure; it was to be UNFINDABLY
> > > secure. We convolute an allready encrypted message to the point of
> > > not being recognizable as cyphertext, then we hide it on the end of
> > > a file. We want it to look like garbage.
> >
> > Cyphertext from any decent system ALREADY looks random. Whats the
> > point of doing more to it?
>
> Many encryption tools such as ripem, pgp, and dolphin can recognize their own
> output...which indicates that there is a footprint to that particular
> implimentation.
Intentionally. They INTENTIONALLY put magic numbers at the head of the
file. If you remove that, the file is random. You can hack PGP not to
use headers if you really want to. Proposing some useless cryptosystem
just to hide the headers is completely unneeded.
Perry
Return to July 1993
Return to ““Perry E. Metzger” <pmetzger@lehman.com>”