Re: devotee (debian vote engine): predictable RNG allows recovery of secret monikers

To: debian-devel@lists.debian.org
Subject: Re: devotee (debian vote engine): predictable RNG allows recovery of secret monikers
From: Timo Juhani Lindfors <timo.lindfors@iki.fi>
Date: Tue, 24 Apr 2012 20:13:30 +0300
Message-id: <[🔎] 84y5plf3yd.fsf@sauna.l.org>
In-reply-to: <[🔎] 20120424111600.GA7690@jwilk.net> (Jakub Wilk's message of "Tue, 24 Apr 2012 13:16:00 +0200")
References: <[🔎] 84ehrdh2rg.fsf@sauna.l.org> <[🔎] 20120424111600.GA7690@jwilk.net>

Jakub Wilk <jwilk@debian.org> writes:
> Note that 8 random alphanumeric characters can have at most ~47.6 bits
> of entropy. So just improving RNG wouldn't help here.

True. We need to both fix the RNG and use a longer moniker.

Also, I just noticed that rand() is also used to randomize the order of
votes in the final tally. If I knew the hashes sufficiently many (maybe
20?) voters I probably could predict the initial state of the RNG and
reverse this randomization step completely.

Reply to:

Follow-Ups:
- Re: devotee (debian vote engine): predictable RNG allows recovery of secret monikers
  - From: Timo Juhani Lindfors <timo.lindfors@iki.fi>
- Re: devotee (debian vote engine): predictable RNG allows recovery of secret monikers
  - From: Raphael Geissert <geissert@debian.org>

References:
- devotee (debian vote engine): predictable RNG allows recovery of secret monikers
  - From: Timo Juhani Lindfors <timo.lindfors@iki.fi>
- Re: devotee (debian vote engine): predictable RNG allows recovery of secret monikers
  - From: Jakub Wilk <jwilk@debian.org>

Prev by Date: mass bug filing: debcheckout fails
Next by Date: Bug#670301: ITP: libtext-balanced-perl -- Extract delimited text sequences from strings
Previous by thread: Re: devotee (debian vote engine): predictable RNG allows recovery of secret monikers
Next by thread: Re: devotee (debian vote engine): predictable RNG allows recovery of secret monikers
Index(es):
- Date
- Thread