Author Topic: Cryptography Implementation Discussion (Read 18183 times)

Ipquarx · January 08, 2014, 05:25:15 PM

So based on recommendation by Lugnut, we're going to be using 128-bit ECC (256-bit numbers).
Based on this, and another 20% speed improvement on multiplication I got by replacing a couple getsubstrs, here are the speeds for the functions:

Modular Multiplication: 9ms
Modular Addition/subtraction: 0.1-0.2ms

We still need a method of generating good random numbers.

Ad Bot · Advertisement

Lugnut · January 08, 2014, 09:03:28 PM

It was your recommendation I said would probably be okay

We should implement all of them and have a variable choice - this is a support add-on, after all.

Ipquarx · January 08, 2014, 09:09:51 PM

After I have all the ECC functions that are required implemented, I'll make a general Curve scriptobject with support functions for as many kinds of things I can cram in there. Things like different key exchange protocols, etc.

It's gonna be great ;)

I'm also working on prettifying, splitting up, cleaning up, and commenting the code now.

Ipquarx · January 18, 2014, 01:46:06 PM

I just realized something.

How are we going to generate good random numbers on a dedicated server, since there is no client input?

0xBRIANSMITH · January 18, 2014, 02:11:04 PM

Quote from: Ipquarx on January 18, 2014, 01:46:06 PM

I just realized something.

How are we going to generate good random numbers on a dedicated server, since there is no client input?

you can do some magik with player positions.

Lugnut · January 19, 2014, 03:33:58 AM

yeah player positions and brick planting, chat message letter counts and linguistics and stuff

Ipquarx · January 19, 2014, 12:11:42 PM

As me and brian discussed, that potentially leaves the RNG open to an injection attack, especially if say, there's only one person on the server.

Me and brian thought of using the CRC of various files in the config and addons folder.

Xalos · January 19, 2014, 12:23:55 PM

Quote from: Ipquarx on January 19, 2014, 12:11:42 PM

Me and brian thought of using the CRC of various files in the config and addons folder.

That leaves the seed the same every time the server starts unless the host constantly changes files - or ultimately, you're still not using a crypto secure RNG.

Ipquarx · January 19, 2014, 12:49:23 PM

Quote from: Xalos on January 19, 2014, 12:23:55 PM

That leaves the seed the same every time the server starts unless the host constantly changes files - or ultimately, you're still not using a crypto secure RNG.

Well then what do you suggest? Do we have some sort of variable somewhere that has some user input and a script that generates random seeds out of that?

Lugnut · January 19, 2014, 01:12:22 PM

It wouldn't make a lot of sense for the host to comprise his own server: simply have him manually activate the key generation process after he thinks there's sufficient randomness.

Greek2me · January 19, 2014, 03:24:37 PM

Quote from: Lugnut on January 19, 2014, 01:12:22 PM

It wouldn't make a lot of sense for the host to comprise his own server: simply have him manually activate the key generation process after he thinks there's sufficient randomness.

You can't trust the users like that.

Quote from: Xalos on January 19, 2014, 12:23:55 PM

That leaves the seed the same every time the server starts unless the host constantly changes files - or ultimately, you're still not using a crypto secure RNG.

Is there a to use the console.log file?

Lugnut · January 19, 2014, 03:26:36 PM

we can't trust the guy running the software!??? wtf??

why would he bug his own server?!?!?!

Greek2me · January 19, 2014, 03:31:09 PM

Quote from: Lugnut on January 19, 2014, 03:26:36 PM

we can't trust the guy running the software!??? wtf??

why would he bug his own server?!?!?!

No, I mean this part:

Quote from: Lugnut on January 19, 2014, 01:12:22 PM

simply have him manually activate the key generation process after he thinks there's sufficient randomness.

You can't trust them to do that right. Anyway, that's another step for the user. They shouldn't have to do that.

Lugnut · January 19, 2014, 03:36:53 PM

okayyyy but truecrypt sorta does it

maybe explicitly have the host move his blockhead and send secret random strings of letters via non-echoing servercmd

No one excluding a government agency or isp or other mitm can intercept that data
Combined with secure data transfer from client to server using keys generated client side... hmm, that has a flaw too

look at how truecrypt does it
"type 300 random characters" so you have to type 300 before it lets you enter the next phase
You can type 600 if you have enough patience

You still manually enter the next phase

Basically, have the player dance and use trigonometry or something to figure out his players rotation/position edit: the host, not a random player
Also allow input via servercmd
Allow input from all players on the server - at worst their input is predetermined and useless, at best their input increases the entropy greatly

Zeblote · January 19, 2014, 03:40:19 PM

spawn a physics vehicle shoot it into the ground and get it's rotation 500 ms later