Schneier on Security

ab praeceptis • June 2, 2017 11:45 PM

Ben A, all

I’ve read both pro- and anti SHA3 articles. Thanks for the links (from reddit and hn, I take).

I might say that I’m shocked because one of them simply hasn’t understood security and the algorithms and the other one is even comparing apples with dogs. But I don’t because I’m not (anymore) shocked.

I read imperial violet quite frequently for one simple reason: it’s like a window into googles (and others like mozillas, etc) way of thinking.

What I’m not at all surprised about is Joes and Janes understanding. SHA3 came many years after SHA2 and SHA3 is officially supposed to be better than SHA3 – ergo Joe and Jane have their common (wo)mans answer. Which btw is OK in my opinion. Gazillions of end users need simple answers and guidelines.

What makes me really dislike the “discussion” between the two “experts” though isn’t even their professional sloppiness (I try to avoid using the term “incompetence”, in part because it’s probably more about ignorance).
What I dislike is how they boil it down.

imperial violet, for instance, is not off with his desire for speed. And no, that’s not simply because google and the likes care mostly about speed (as the other one indicates). Speed is important for many reasons, such as small MCUs (there are way more 430ies, even 8051s, a plethora of arm MCUs, etc out there that fast desktop or server cpus…) and – an important point – about acceptance and hence uptake. I hope I need not remind of the reason why even today many web user databases use md5 passphrase hashes…

If you run a web site or service with a significant amount of users, speed is of concern – and way more than many think. One reason for that is that one can’t arbitrarily scale. Once you have your 16 or 48 or whatever xeon or power core busy you hit a quite hard wall; it’s simply not good enough to add more servers as doing that opens another box of pandora.
Short: Doing something tens or hundreds of thousand times per second or otherwise massively, e.g. pumping out terabytes per hour, it makes a very major difference whether a core algorithm runs at 1 cycle/byte or at 15 cycles/byte.

But the decisive points are not limited to that and both miss that to a large degree. To name an example: state size of an algorithm isn’t just performance relevant but also security relevant. On the other hand the possibility to extend an algorithm is (imo) next to irrelevant. Other quite important points were utterly ignored; keyability is an example.

In case anyone is interested: My personal preference is blake2. For Joe and Jane (who typically don’t run massive scenarios) SHA3, the official thing, is a fine algorithm. For others who are more adventurous but still prefer to stay within a safe zone Skein, an algorithm which was co-designed by our host, Bruce Schneier, is a fine alternative, too.

Btw: Do we need 512 bit algos? No, we don’t, except for very, very rare scenarios. In fact, even 256 are somewhat (but healthily) larger than 99.99% of all scenarios need. So let us stop that mundane and silly bigger-is-better hunt, which specifically in the crypto field is silly (because there it’s much more about smarter is better).

Which brings me to my last point: Somehow we have become a society where only winners count. Just as if 2nd and 3rd places were without any value or merit. I consider that immature and unwise.
All finalists in a crypto competition have run through a merciless and hard parcour and “the winner” (like Keccak/SHA3) is usually not somehow superior but has been chosen based on a certain profile which happens to favour 1 algorithm over the other finalists which are first class, too, and usually in some respects even better (and slightly worse in others).

ab praeceptis • June 4, 2017 2:05 AM

Ministry of Truth

“super high EAL” etc. – Forget it. windows has eal. eal means nothing but “someone (usually a large corp) coughed up the major money for a golden “secure” sticker. Same with fips and others.

Let me tell you why we are where we are – and why we will stay there for quite a while.
First the latter: We will stay there for quite a while for 2 reasons: a) we don’t understand why we are there, and b) to get out of that ugly hole we’ll need to walk a 1000 step staircase up.

Now to the why. 2.5 main reasons:

a) computing was, from the first day on, mainly driven by greed and irresponsible playing. Listen around, the holy currency still is either money or “fun”. Go to any developer conference and you can drown in “it’s fun!”, “we do it for fun!” statements.
The IT field, particularly software dev. is basically another “go west, get rich!” with disney park thrown in on top.

b) foss. Many will hate me but I’m absolutely sure about that. That’s not to say that foss is only and always bad, it isn’t, but in summary foss broke down the last few walls of reason plus, to make it worse, it damaged the whole field.
foss broke down the last walls of reason because you can’t ask for anything. From a payed developer you can demand to work properly (not that many would do that, but one could demand it), from a foss dev. you can’t ask anything. From a software vendor you could demand at least minimal standards, quality, compensation, foss very clearly states “f*ck you!”; you use that foss software without its developers standing for anything, not even formally. A company must fear negative reactions, foss need not care, there simply are no consequences at all.

c) universities and the grant system are rotten. What little useful outcome research produces is almost always either hidden away and/or abandoned or used to spin off a company.

So, forget those “crazy super eal” OSs. Yes, there are a few, very few, but they are either abandoned or spun off at a rather early stage or they are private corp stuff from the beginning. And, that’s important, they usually are not secure OSs but rather “not rididulously f*cked up crap”. An example would be what came out of Oberon.

As for the 1000 steps stair back to sanity: We are at a very early stage and acceptance, let alone uptake, is sadly low. C is cool and fun, Ada or Eiffel aren’t (so they think), fuzzing is cool and fun, properly spec’ing and verifying isn’t (so they say).

And just btw: Think a moment about the kind of money one could earn by being able to sell some actually reasonably secure OS! (And about the efforts and investment that would need). Do you really think that would be given away for free? I certainly don’t. As for foss, forget it; they are about cool and fun and blabla.

And btw, I’m quite sure that Bruce Schneiers “theater” image does hold here, too. Most people do not (really) care about security; what they do care about is feeling secure and comfortably so (read: spending 29$/year is O.K., activating ones brain and acting reasonably is not).

ab praeceptis • June 5, 2017 1:39 AM

@n/a

blog.torproject.org got changed big and now needs JAVASCRIPT to comment. NSA took it over??

IF that was true I wouldn’t be surprised at all. I personally consider tor as tainted since quite some time.

@Ministry of Truth

Of course there are pleasant exceptions, e.g. Minix which I myself talked about occasionally and in a quite positive way. But before we can repair a situation we must properly assess it and fact is that the whole field is rotten grosso modo.

Ad “you can repair foss software yourself” – Oh really, is that really so? I don’t think so; I think that that’s nice sounding blabla like so much with foss. IF that were true then why don’t we just repair, say OpenSSL or linux? Maybe because we can’t? Maybe because C is ambivalent and hence unverifiable, because fuzzing and all those other funny techniques don’t really cut it, and, very importantly to repair something one needed a proper specification of what “working properly” as opposed to being a clusterf*ck means? Usually even that doesn’t exist. So all them funny test are run against what reference?

“unit, integration and whatnot tests” – Well intended but worthless blabbering. See above. And keep Dijkstra in mind: Testing can prove the presence of bugs but not their absence.

Just like the 1000 eyes blabbering. Sounds nice and oh so convincing but it consistently fails. For heartbleed, for instance, not even the promised 4 eyes (connected to working brains) were available.

Do I like microsoft? Certainly not; hate them since decades. But, you see, this is no sympathy competition. Fact is that evil microsoft has sunk millions upon millions into research and if tomorrows programmers write more reliable software then it will to a major degree be due to microsoft sinking millions into research and development of better tools.
If in a dire situation like ours I have to choose between evil Microsoft having seen the problem and actually delivering vs. “fun! fun! and freedom as in speech!” shouting sectarians with an utterly bad track record I’ll choose Microsoft. Trust me, I’m the last guy on this planet who likes microsoft, let alone to laud them, but we’ll never achieve safety and security if we can not even recognize reality and prefer to cling to some sectarian creed.

And btw. my education wasn’t cheaper than that of other engineers. You see, there is a major difference between a, say electrical engineer helping on in his won free will with some, say, school or town project vs. accusing all electrical engineers as somehow evil, if they charge a fee for their services.
What do you think you get with that foss model? Let me tell you: More often than not you’ll get losers and lousy amateurs because the good professionals want and need to and can earn a living with their profession.

And you know what? I still follow the 3 step model; in fact I always suggest it by myself to my clients: downpayment, payment on delivery plus a considerable part, say 20%, only 4 – 6 weeks after delivery, i.e. when my work has been tested and shown to perform as agreed.
Which leads me to my final point: microsoft (and a few other companies) actually pay professionals for cleaning up and repairing what they messed up. foss … oh well…

ab praeceptis • June 5, 2017 9:30 AM

Thoth

the mindset of Linus Torvalds of treating security and safety as typical second class has to change

Just a short remark: No.

I get your point but linux can not possibly be made secure. For one the linux bloat bubble consists of millions and millions of loc. Moreover, safety, reliability, and security have to be designed from the start. All attempts to somehow turn crap into something sound are bound to fail.

But my remarks were of a general nature, anyway. Of course there is also good or even high quality foss stuff (though typically not with gpl; little surprise there). OpenBSD is an obvious example (although compromised by its roots (posix)); those people do quite good work. That said, I’ve also seen really good and open sourced work come from companies.

Generally speaking, though, foss has rotten the whole field. One very regrettable symptom is the wide spread expectation that not only must software free (beer) but, in fact, foss software is better than commercial software – which, of course is utter bullsh*t.

ab praeceptis • June 6, 2017 1:00 PM

Bob Paddock

Thank you but from what I know Nudelmans view is still strongly biased and painting the us of a system way too positive. That’s also the reason for me to politely thank you for mentioning some books of us-american origin while being utterly desinterested.

In case that serves as a solace to us-americans: I’d react quite similarly (albeit very mildly less negative) to uk, german, and most other school books of western origin.

Btw, the russian education system has also been watered down and “westernized” (read: destructed) for many years. It’s only during the last year that president Putin has replaced a “liberal” by a renowned and competent lady as minister in charge of education. The Russians were lucky because 20 or 25 years are not enough to completely destroy a really good education system and a solid socket of well educated people.
As per today I’d chose (not even Moscows Lomonossov but, say) Omsk university over every us of a ivy league “university”. Gladly my kids can stay in western europe as some few islands of good education have survived (e.g. french elite universities; quite good math level, too).

ab praeceptis • June 7, 2017 8:24 AM

mostly harmful

Besides question about the players (not every jar with a “Binney” label on it actually contains Binney …) …

“Roll your own crypto” – Pardon me but that’s a grave lack of realism.

How would Joe and Jane who are hardly capable to understand that windows and cloud storage for their secrets isn’t exactly the smartest thing to do, or, for that matter, “professionals” who hardly ever heard about math or crypto (beyond library calls), how would those people roll their own crypto?

Sure, Binney (or whoever wrote there) is right in saying that cia/fbi/nsa/ghcq/etc life is very considerably more comfortable being confronted with only a rather limited assortment of extremely widely used crypto (and than usually badly implemented). On the other hand all that personally rolled crypto must come from somewhere – and I don’t see that somewhere, simple as that.

Also, one would be well advised that bad crypto is far worse than no crypto because it doesn’t offer much in security but paints a big fat target on ones head.

ab praeceptis • June 7, 2017 6:47 PM

Ministry of Truth

“Is it actually more rotten than the commercial alternative?” – It might be entertaining but it’s of little value to again and again judge foss by comparing it to commercial software. The often implied frame of either foss or commercial doesn’t make sense. The true alternative is to make better foss (and commercial).

“to repair foss is easier” – So what? That’s theory, i.a. because repairing something implies a problem in the first place. How about building software that doesn’t need to be repaired.

“FOSS developers might not have a monetary incentive to follow good coding practices (such as making the specification before writing the code), but they have other incentives.” – I suggest you read that sentence of yours again and think.

I’m not set against their incentive. I value if someone acts driven by non-monetary incentive. That said, in the end it’s the result we’re interested in, no? I mean it’s not like nsa/cia/fbi would say “let’s not abuse those attack surfaces because they’ve been created with non-monetary incentives!”

“I was simply responding to your assertion that all FOSS QA is limited to fuzzing.” – I didn’t say that. I just used fuzzing as one example of post faktum approaches. See above. How about creating software right in the first place?

“I didn’t mean that having access to the source makes it guaranteed that you’ll find bugs, only that it makes it easier than not having the source.” – Don’t you get it?
Yes, it’s easier; you are right with that, BUT: How about building software properly so as to not need finding bugs?

“nor have I said that the primary advantage of FOSS is that it’s “fun”.” – Misunderstanding. My point was the mindset and “fun!” is a very important part of the foss mindset. That statement is supported by blabbering about “fun” is one of their favourites.

Let me but it brutally clear: Millions of victims – because that’s what most software users are, victims – have to suffer pain, have to pay with utter loss of privacy and safety for the “fun” of those immature foss idiots (I’d like to mention that there are positive exceptions. OpenBSD comes to mind).

“I don’t think it’s evil for FOSS developers to get paid for their work. I think it’s good.” – Depends. All them large corps (plus some agencies) playing nice guy and paying (while de facto taking over foss projects) has been part of the mechanism that brought us to where we are.

“Microsoft pays professionals to backdoor their products.” – Yes, probably, but that’s not the point (in this context). microsoft spent millions and millions for safety related research, much of which is kind-of-open. Moreover they pay hundreds (thousands?) of sw engineers to repair their stuff.

My point isn’t “commercial software is great!” neither is it “I’m against foss de principe”. My point is that software should be of reasonably good quality, no metter whether commercial or foss. A related point that you seem to completely ignore is that foss is the worst contributor to ruining and poisoning the whole industry and creating the impression that a “talented” teen can pretty much do the same a mature sw engineer can do.

I want responsibility – for both. If a company sells crap they should be legally required to bleed/pay for all damage if the problem arose out of bad engineering. Same for foss.
Now, many will say that that would kill 90+% of all foss and my response is “Yes, probably – and that would be great because the few grown up engineers in foss would continue while all the losers would turn to another and less harmful hobby. Why would the grown engineers continue? Because they had no reason to be afraid as they work properly anyway.
And maybe some 10% or 20% of the foss amateurs would finally learn how to properly design and implement software.
At the same time the management of microsoft and colleagues would be shaken by fear and would very, very quickly realize that spending a billion or so on getting their act together is so much cheaper than paying tens of billions in compensations.

ab praeceptis • June 15, 2017 9:32 AM

Ministry of Truth

As I, who actually wrote and shared open source code already decades ago and before the term, let alone the sectarian movement existed, clearly told you June 8, 2017 8:54 AM, you have disqualified yourself from having any further discussion on that matter with me.
Not that it was needed but thank you for clearly demonstrating yet again that my decision was well based.

Have a nice day.

ab praeceptis • June 21, 2017 4:49 PM

Anura et al.

Can we please stop the fairy tales and base ourselves on halfway reasonable observations?

For a start: oss != foss. What I said was clearly about foss as in “gpl infested, brainless evangelizing, ‘1000 eyes'” crap.

Moreover, the “open source is naturally superior by providing the source” credo is not even half-cooked. I’ll explain: for Joe and Jane the sources worth is close to zero; for them source is “stuff you don’t need to run the software”. But even for professionals having the source does not equate to power. One reason for that is that contrary to sectarian believe having the source is not the most important property of software; that property is “is working properly and is well usable”. THAT is what we need most of all in a software.

Another reason that explains a certain aggressivity level on my side is all the brainless blablabla of the sectarian. They blabber about being able to change code themselves – well, the reality is usually very different and shows that most are hardly able to even just build the code from source, let alone changing it.

If those sectarian really did what they are blabbering about they’d know that many (f)oss projects are quite hard to build, have insane build dependencies, work with version x but not with version y of the compiler or some library, are insanely dependant on some not at all standard gnu stuff, etc, etc.
And don’t get me started on poor (usually pretty much non existant) documentation …

Does all that make commercial software somehow superior? No. But so what, I didn’t evangelize commercial software in the first place. What I did was to criticize (f)oss software – but somehow the foss sectarians tend to automatically react to criticism of foss as if one did preach commercial software.

foss is to a large degree a blob of sectarian belief, sorry. Now, there is some quite good (f)oss, no doubts, but there’s also quite good commercial software. One important piece of the foss sectarian blobb is the “1000 eyes”. It has been shown to be nonsensical and far from realistic. For gods sake, the crown jewels, OpenSSL, have been clusterfcked *because not even 4 eyes did properly look, let alone 1000.

Another aspect that seems to be utterly ignored quite often is the fact that paying someone for his work is not somehow evil, anti-social, or otherwise bad or even just uncommon.

Look, a good software developer usually has a very considerable investment in his education, be that formally or not. Now, if one wants people who invested heavily in their education and needed many years to gain experience, to work for us, we have to pay them. Simple as that. Be it a doctor, a lawyer, a civil engineer, etc – we pay them.

At the same time – and to quite some degree due to foss – we want things for free. Even companies often want things for free; leaves them more profit. Trust me, you do not want to know the billions in damage that have been created by lousy foss software usage …

Another hammer: Why do you think companies like intel or google or even apple give away software for free? Because they are so social and nice? Certainly not. Let me tell you one very, probably the important reason: No responsability/liability.

That’s a wet dream and a very hard nut to crack. Most legal systems see companies, who give or do something for money in some liability assumption. Now, everyone has seen plenty of those funny “no liability whatsoever” remarks in license “agreements”, right. Problem is that many jurisdictions don’t accept that; they say that when you get money for something, then you have at least some reasonable liability, period. After all, business is based on that.
Not so with foss, however. Finally the wet dream of utterly greedy billion$ corporation has become a reality; there is a way out of liability: foss.

Does that mean that foss is evil and bad? No, certainly not. But that wasn’t my point anyway. My point was that foss is not the holy grail of eternal happiness. Some basic rules that everyone with a brain and some reason knows still hold. Like “Whenever people interact there is a trade-off” or “quality can not be achieved or balanced by quantity” (read: 20 sectarian idiots do not make up for 1 professional).

Finally: What are you talking about anyway? Pretty much every not insignificant foss project has been broken, failed, shown to be a clusterfck more than once. *OBVIOUSLY the solution is not more sectarian evangelizing but introducing some reason and professionality.

ab praeceptis • June 21, 2017 5:39 PM

Anura

I’m glad to see you at least somewhat differentiating “how to make good software” and “one desriable point (among others) is to have the source”.

But there is a but and I know that bloody well from ugly experience: The very moment I want or need to sell software I’m fcked with open source. Reason: there *will be some ignorant socially retarded a**hole who will compile my sources and basically give away my work for free. Which might lead to me (or my client) having invested a considerable amount of money and sitting on debts.

The problem related to the foss sectarians there is that they intentionally create the impression that software must be free that anyone wanting money for software must be a greedy despicable being who just deserves to get f*cked.

Sometimes foss proponents argue that every software can be cracked and stolen. And yes, that’s true but a) very many potential customers don’t want software from very dubious sources (“warez”) and b) it’s still a lot more effort to crack binaries than to simply recompile source.

There are other problems, too. To name one: What if one “smart” customer edits my source with the intention to make it “better” or to extend functionality, or …? If there are problems later, chances are he’ll call my clients support and such creates a burden that is based only on his fumbling.

There are other solutions that are better. To name one for a problem you also mentioned (and which often comes up from the foss side): what if the software company ceases to exist or simply doesn’t support a product anymore? Simple: Sources go to a notary along with the (published) direction that should company cease to exist or stop product support, notary is to make the source available to clients.

I also like this example as it underlines a very important fact: Usually neither extreme is the best solution but a reasonable and well conceived compromise is.
Neither “source? Only over my dead body and an army of lawyers!” nor “foss! foss! everything must be (f)oss!” is a good solution.

ab praeceptis • June 21, 2017 7:33 PM

Anura

You will probably continue to fail understanding that but I’m actually not a big fan of the status quo. To show what I mean using an example with high contrast, patents, I’d very much love to see a much better solution. Patents, in my view, should have much shorter expiration times and there should be a much better balance between commercial and social interests. I do understand that privately financed research needs a certain protection period to recover costs, but I also clearly see the need of society to profit from research; therefore patents should expire much sooner.

Very similarly I would see a solution that could satisfy everyone in the software field in rules along the line that any software must be open sourced after a certain period of time, maybe in the range of 3 years, after market entry.

On the other hand I also see the immense harm that has been created by foss and particularly gpl fanatics. Largely due to them many in society consider software as somehow free by nature and any and all interests of software creators to protect their work as somehow unethical or even criminal.

“Really, if they are doing this [editing source code] it probably means that the software doesn’t meet their needs.”

Pardon me but that very clearly shows that you lack any concrete insight into or experience in the field and are purely “politically” driven.

For a start, NO software meets everyones needs, neither does it need to. Software needs to do what it says it does, period.

But there is more: Your statement also clearly shows that you have a deranged and utterly questionable understanding of both sides involved. You clearly see any source code given to the user as his to do with whatever he fcking pleases.
That is gravely mistaken! If a commercial entity hands out source code then that is with a clear purpose, namely to be independant and safe – just as the oss sectarians always demand (knowing well that they are spreading a lie). That source code is *not yours and it is not for you to do with it whatever you want.

I’m quite hesitant nowadays to hand out any source code (after quite liberally putting out loads of it for many years). And you and other sectarians and foss fanatics just convince me again and again to not give my work away anymore.

And now I’ll look whether there are legal ways to have a license that explicitly and bindingly prohibits to have ones code infested with gpl tainted code.

ab praeceptis • June 21, 2017 9:07 PM

Anura

In some theoretical weirdly communist world that might work. In the world we live in, however, what you suggest makes little sense.

If any party, usually a company, invests considerable resources of diverse kind (money, know-how, etc) into the development of something, be that some medizine, a more efficient engine, an office building, or software, they deserve to earn the money to recover their investments and to make a profit. There is nothing wrong with that nor is it in any way evil.

There is, of course, other parties, too, particularly society and the idea that any development and designs should serve for the well being of society too – as opposed to serving the companies only – is one I sympathize with. That’s why I think that, for instance, software should become open source after some reasonable period of time.

I am opposed, however, to weird models which largely boil down to keep the utterly biased one-sided model but to exchange who has all the rights. Because that’s what most (f)oss sectarians basically want (and what you argued for, too). The difference would simply be that then the companies would be basically without rights and “the people” would hold all power and rights over software.

As is probably not surprising in my field I actually usually have to hand over source code. And I do that – after I’m payed in full and after the other side signs an NDA about whose enforcement I’m quite bellicose.

The reason is simple. It is my education, my know-how and knowledge, my experience, and my work. I live from that, not unlike an architect or a naval designer. Usually the deal is that you get what I have built, as it is (i.e. as a product), and for the purpose it was built for (I do, for instance, frequently expressly exclude any kind of even remotely military use by nato countries). Other rights for you? Nope, forget it.
You don’t like that? Go and find someone who is capable and willing to do it on your terms. Good luck with that.

And the more I’m getting molested by weirdo communist or gpl taliban approaches which utterly ignore me and my interests, and btw. often are very disrespecting, just make me harden my position and stance.
Given that I actually know how to – and do – design and build safe and secure systems/software I’m quite cool and confident about the outcome of that game some try to play here.

Btw: I hear demands, demands, demands from your side. A bad approach, a seriously bad approach. Let’s talk about what you have to offer for a change …

ab praeceptis • June 21, 2017 9:50 PM

Ratio

Please, refrain from attempting to limit the free speech of Clive Robinson whose status here, btw., as well as his contributions are by far above yours. Thank you.