Natanael

joined 8 months ago
sorted by: new top controversial old
How Docker was born in c/programmer_humor@programming.dev
[–] Natanael 1 points 4 days ago

Pin API / ABI versions.

If you're able to track that...

Worthless social constructs in c/funny@sh.itjust.works
[–] Natanael 4 points 4 days ago (2 children)

Phrasing

Bosch to cut 13,000 jobs in blow to Germany's auto industry in c/world@lemmy.world
[–] Natanael 1 points 4 days ago

It only works if you both have enough funds to actually bankrupt the competition and then have a plan for taking that market share

Google's shocking developer decree struggles to justify the urgent threat to F-Droid in c/technology@lemmy.world
[–] Natanael 2 points 4 days ago (1 children)

You're responding downthread of QubesOS being mentioned

Sure it's hard to get that kind of security onto mainstream distros. But it exists.

Clarence Thomas gives bonkers reason for SCOTUS to tear up settled laws in c/politics@lemmy.world
[–] Natanael 3 points 5 days ago* (last edited 5 days ago) (1 children)

That works great and all until somebody tries to block renewal of basic human rights. Put constitutional referendums on a schedule.

Here in Sweden two consecutive elected governments have to approve changes to the constitution. Seems like another useful tool to prevent abuse.

Lower court precedence, however, sure it would be nice with expiration dates so legislature has to authorize it explicitly to keep it. You could even have boards whose responsibility is to translate precedence from courts into law proposals to be voted on.

Bosch to cut 13,000 jobs in blow to Germany's auto industry in c/world@lemmy.world
[–] Natanael 13 points 5 days ago (6 children)

Subsidies designed to bankrupt the competition isn't a better economic model

The Open Printer Is a Raspberry Pi Zero W-Powered, Fully-Open, Highly-Flexible Inkjet Printer in c/opensource@programming.dev
[–] Natanael 3 points 1 week ago (5 children)

Non commercial means nobody else can sell it, so even if you print one for a friend you can't legally recoup the costs from them

BREAKING NEWS: We did it, guys! 20 poptarts! in c/lemmyshitpost@lemmy.world
[–] Natanael 3 points 1 week ago

Save them for future stacking attempts

BREAKING NEWS: We did it, guys! 20 poptarts! in c/lemmyshitpost@lemmy.world
[–] Natanael 5 points 1 week ago

Exponential growth

BREAKING NEWS: We did it, guys! 20 poptarts! in c/lemmyshitpost@lemmy.world
[–] Natanael 6 points 1 week ago (1 children)

You have to bring the seeds first

Should Neutron Stars be Added to the Periodic Table? in c/science_memes@mander.xyz
[–] Natanael 2 points 1 week ago (1 children)

https://abc.lbl.gov/wallchart/chapters/03/2.html

I got stuff mixed

In beta minus decay, a neutron decays into a proton, an electron, and an antineutrino: n Æ p + e - +. In beta plus decay, a proton decays into a neutron, a positron, and a neutrino: p Æ n + e+ +n. Both reactions occur because in different regions of the Chart of the Nuclides, one or the other will move the product closer to the region of stability. These particular reactions take place because conservation laws are obeyed. Electric charge conservation requires that if an electrically neutral neutron becomes a positively charged proton, an electrically negative particle (in this case, an electron) must also be produced. Similarly, conservation of lepton number requires that if a neutron (lepton number = 0) decays into a proton (lepton number = 0) and an electron (lepton number = 1), a particle with a lepton number of -1 (in this case an antineutrino) must also be produced. The leptons emitted in beta decay did not exist in the nucleus before the decay–they are created at the instant of the decay.

Alex Jones taken off YouTube hours after rejoining despite MAGA hopes of return in c/politics@lemmy.world
[–] Natanael 6 points 1 week ago (3 children)

No pardoning civil suits

2
Reflections on a Year of Sunlight - by Let's Encrypt, regarding certificate transparency (letsencrypt.org)
submitted 3 months ago by Natanael to c/crypto
0 comments fedilink
 

Via; https://bsky.app/profile/filippo.abyssdomain.expert/post/3lrdvmvj6kj2p

1
A Deep Dive into Logjumps: a Faster Modular Reduction Algorithm (baincapitalcrypto.com)
submitted 3 months ago by Natanael to c/crypto
0 comments fedilink
1
Rewriting SymCrypt in Rust to modernize Microsoft’s cryptographic library (www.microsoft.com)
submitted 3 months ago by Natanael to c/crypto
0 comments fedilink
32
The Guardian launches Secure Messaging, a world-first from a media organisation, in collaboration with the University of Cambridge - Cover traffic to obscure whistleblowing (www.theguardian.com)
submitted 3 months ago* (last edited 3 months ago) by Natanael to c/crypto
5 comments fedilink
 

Context: https://bsky.app/profile/martin.kleppmann.com/post/3lr6ex2glkc2h

This system is baked into the Guardian's news app that millions of people have installed. Every regular user of the app generates cover traffic, and an attacker monitoring the network cannot distinguish someone using the secure messaging feature from a regular user.

Open source;

https://github.com/guardian/coverdrop

7
No Phone Home - "identity systems must be built without the technological ability for authorities to track when or where identity is used" (nophonehome.com)
submitted 4 months ago by Natanael to c/crypto
0 comments fedilink
6
[pdf] All Cops Are Broadcasting: Breaking TETRA After Decades In The Shadows (www.usenix.org)
submitted 4 months ago by Natanael to c/crypto
0 comments fedilink
 

Accompanying presentation video;
https://youtu.be/1jPyWXuc-pY

Slides;
https://orangecon.nl/legacy/2024/assets/slides/2024/OrangeCon2024%20-%20All%20Cops%20Are%20Broadcasting.pdf

6
There is no Diffie-Hellman but Elliptic Curve Diffie-Hellman (keymaterial.net)
submitted 4 months ago by Natanael to c/crypto
1 comments fedilink
1
The cryptography behind passkeys (blog.trailofbits.com)
submitted 4 months ago by Natanael to c/crypto
0 comments fedilink
2
Blockcipher-Based Key Commitment for Nonce-Derived Schemes (eprint.iacr.org)
submitted 4 months ago by Natanael to c/crypto
0 comments fedilink
 

Via; https://bsky.app/profile/filippo.abyssdomain.expert/post/3lonuhxye4o2x

2
MLS General Availability Announcement | Wire (wire.com)
submitted 5 months ago by Natanael to c/crypto
0 comments fedilink
5
Threema has deployed a new multi-device protocol (threema.ch)
submitted 5 months ago by Natanael to c/crypto
0 comments fedilink
 

From here;

https://chaos.social/@dbrgn/114386333844571387

dbrgn@chaos.social - Here are a few interesting details about the maximally privacy-friendly protocol design:

  • Everything related to synchronization between devices is completely end-to-end encrypted
  • Message recipients do not know from which device a message was sent
  • The Mediator Server of a device group does not know the corresponding Threema ID
  • The Chat Server only sees the IP address of the Mediator Server, but not the IP address of the end devices
1
Draft: Hybrid Post-Quantum Password Authenticated Key Exchange (datatracker.ietf.org)
submitted 5 months ago* (last edited 5 months ago) by Natanael to c/crypto
0 comments fedilink
 

Announcement from here;

https://mailarchive.ietf.org/arch/msg/cfrg/_HH9A70BwJ6vgEfT2iSTvCQFhZE/

Hi folks,

We recently published an initial specification for a hybrid, post-quantum, augmented PAKE protocol, called CPaceOQUAKE+, located here:

https://datatracker.ietf.org/doc/draft-vos-cfrg-pqpake/

The motivation for this protocol can be roughly summarized as follows:

  • Post-quantum: None of the existing PAKE specifications are post-quantum. Rather than incrementally improve on PAKEs that are secure against standard adversaries, we felt it important to shift focus to post-quantum adversaries.
  • Augmented: Many PAKE deployments use augmented PAKEs (SRP and SPAKE2+, for example). A drop-in replacement for these use cases was therefore important.
  • Hybrid: CPaceOQUAKE+ is built on CPace and OQUAKE (which is specified in the document and based on the NoIC protocol in [1], and then composed with CPace using a variant of the combiner analyzed in [3]) as well as other standard building blocks (like ML-KEM). While CPace is well-understood, OQUAKE and the combiner itself are more new and thus warrant additional caution (from an implementation and analysis perspective). By making the primary protocol CPaceOQUAKE+ hybrid, we hedge against issues in the component pieces used in its construction and the maturity of their implementation(s).

This specification emerged from a number of relevant papers on the topic, including [1,2,3,4,5]. We are finishing security analysis of this protocol (and the core constituent parts) and hope to publish that soon.

We expect the shape and contents of this draft to change over time, especially as this community commences work on PQ PAKEs. We hope that by releasing this initial version we can get the conversation started on this important topic. IETF 123 is a little far out, but if folks would find it interesting, perhaps we can have an interim meeting of sorts to discuss PQ PAKEs and these specifications in the interim.

Best, Chris, on behalf of the editors

[1] https://eprint.iacr.org/2025/231
[2] https://eprint.iacr.org/2024/1621
[3] https://eprint.iacr.org/2024/1630
[4] https://eprint.iacr.org/2024/1400
[5] https://www.escholarship.org/uc/item/7qm0220s

view more: ‹ prev next ›