[ale] little math

Brian MacLeod nym.bnm at gmail.com
Thu Feb 11 10:24:45 EST 2010


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

On 2/11/10 10:05 AM, Geoffrey wrote:
> 
> The randomness of such a solution is, a, not random?  You'd simply be 
> repeating that same data, hence not random.  Which returns me to my 
> original question, why is random data necessary?  Why not just write nulls?


- From what I have gleaned from the thread:

Because nulls aren't random either.  The idea is that there shouldn't be
ANY pattern to the data on the drive because to create an encrypted
store on the drive mean to create random looking data on the drive.  If
"someone" were to inspect the drive, and see patterns (repeated "random"
patterns or strings of 1s, 0s, or even nulls) then "someone" could
determine there's encrypted data there (and it's approximate size,
volume-wise), whereas if the whole thing has been randomized beforehand,
then an attacker would have to work harder just to get that information,
let alone anything else.

A form of security by obscurity, but in this case, a "reasonable" one in
that it's not a critical to the functioning of the operations at hand or
the security itself.

Brian
-----BEGIN PGP SIGNATURE-----
Version: GnuPG/MacGPG2 v2.0.12 (Darwin)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iQE4BAEBCAAiBQJLdCE9Gxhoa3A6Ly9rZXlzZXJ2ZXIudWJ1bnR1LmNvbQAKCRD5
XCJY/q4Y6J+uB/wOiogRFZXRwML+DdaKiAT/xfa2Hs24L/nzOw6RByWC1aWn39hq
opzWECGIonNXPEnUJ/muUH+bBGwjxuhK872HagEAi99SKU3u160NhUZfTDxHEtSi
d8VuW8oaJtnH23QK17YXLsBjk+FKsc3kr5usYRpBCmScJH5w6i1mowJhG9UqmEiO
7WmNCK6dmqH4RoLHcJKsblJjXxkdEksM3zXjHw2T9Gq2z6NoI9bg3YQCeSkQnIjh
vfFyaa7gXrXhSk6+Bmh5UBEN/h9CyUY3DD63VqVlmnTsiuDSlB94hMRbX1+r8tHi
eufFmwvneoJXUJ6UXJvgIqZoMOOJ0Ojw9vIi
=73+Q
-----END PGP SIGNATURE-----


More information about the Ale mailing list