[sldev] Cryptographic signing of UDP packets

Meadhbh Hamrick (Infinity) infinity at lindenlab.com
Thu Dec 18 09:41:40 PST 2008

Previous message: [sldev] Cryptographic signing of UDP packets
Next message: [sldev] Cryptographic signing of UDP packets
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

RC4 is nearly completely broken. it is not to be used for new  
applications.

On Dec 18, 2008, at 12:51 AM, Thomas Shikami wrote:

> Meadhbh Hamrick (Infinity) wrote:
>> part of the problem with selecting a sequence number and seeding a  
>> PRNG with it is that it is relatively easy to guess the sequence  
>> number. there have in fact been a series of attacks based on this,  
>> including the recent DNS problems. and even if we could, there  
>> would still be the problem that applying a key stream to a packet.  
>> PRNGs are generally not intended to be used this way and are not  
>> designed to resist attacks based on key-stream recovery.
>
> There is a PRNG in use that was designed for cryptography. It's  
> implemented in the algorithm RC4
> _______________________________________________
> Policies and (un)subscribe information available here:
> http://wiki.secondlife.com/wiki/SLDev
> Please read the policies before posting to keep unmoderated posting  
> privileges

Previous message: [sldev] Cryptographic signing of UDP packets
Next message: [sldev] Cryptographic signing of UDP packets
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the SLDev mailing list