[114823] in cryptography@c2.net mail archive
Re: Gutmann Soundwave Therapy
daemon@ATHENA.MIT.EDU (Richard Salz)
Sat Feb 9 18:50:29 2008
In-Reply-To: <47AAFA20.2030300@systemics.com>
To: cryptography@metzdowd.com
Cc: =?ISO-8859-2?Q?Ivan_Krsti=E6?= <krstic@solarsail.hcs.harvard.edu>
From: Richard Salz <rsalz@us.ibm.com>
Date: Thu, 7 Feb 2008 10:46:48 -0500
> Thus unlike with bridges, you fundamentally can't
> evaluate the quality of a security system you built if you're unfamiliar
> with the state of the art of _attacks_ against security systems, and you
> can't become familiar with those unless you realize that these attacks
> have each brought down a system previously considered impregnable.
I don't see how this invalidates my analogy.
In 1940 they didn't know understand about wind-induced vibration and yet
it brought down the Tacoma Narrows bridge. A few years ago we didn't know
much about hash collisions, yet since then the field has brought down MD5.
If the field isn't codified, all the more reason to spread knowledge
rather than encourage a priesthood.
/r$
--
STSM, DataPower Chief Programmer
WebSphere DataPower SOA Appliances
http://www.ibm.com/software/integration/datapower/
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
