[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: Servers Should Use a Secure Mix Algorithm

To: mixminion-dev@xxxxxxxxxxxxx
Subject: Re: Servers Should Use a Secure Mix Algorithm
From: Colin Tuckley <colin@xxxxxxxxxxx>
Date: Thu, 02 Mar 2006 08:46:12 +0000
Delivered-to: archiver@seul.org
Delivered-to: mixminion-dev-outgoing@seul.org
Delivered-to: mixminion-dev@seul.org
Delivery-date: Thu, 02 Mar 2006 03:46:17 -0500
In-reply-to: <20060227153845.15245.qmail@wiredyne.com>
References: <20060227153845.15245.qmail@wiredyne.com>
Reply-to: mixminion-dev@xxxxxxxxxxxxx
Sender: owner-mixminion-dev@xxxxxxxxxxxxx
User-agent: Debian Thunderbird 1.0.7 (X11/20051017)

Peter Hendrickson wrote:
> The recommended default mix for servers (from the distributed
> .mixminiond.conf file) has been:

>># MixAlgorithm: Timed

> I think now is a good time to switch over to a secure mix algorithm.
> Nick Mathewson agreed with this suggestion and asked me to announce
> that it has his blessing.

> I've switched wiredyne over to what looks like the most serious mix:

>>MixAlgorithm: BinomialDynamicPool

> Using real mixes will give us a better feel for the performance of the
> real system.  It will also provide a real security service, modulo the
> software being in alpha.

While I have to agree with you on this in theory, I feel it's rather
premature in practice for the following reasons:

1) Mixminion *is* still in alpha, there is a lot of testing going on and
having the timed algorithm made that easier/quicker.

2) Using a "real" algorithm might make people think the system is secure. We
shouldn't be encouraging that while we call the software "alpha". If Nick
thinks it's time for real algorithms then it's also time for the software to
be Beta. (Comments Nick?)

3) The system is *not* reliable at the moment, for those of us trying to
track down bugs this makes it worse. The NymBaron team for instance would
really prefer a timed mix as it makes their testing faster.

See my miniontest results at http://www.cside.dyndns.org/minion.html for an
example of how this change is affecting the system.

It would have been better if you had talked about this in public on the list
*before* you unilateraly made the change.

cside will *not* be changing at this time.

Can I suggest please that people change back - at least until we have all
discussed this and made sure it doesn't impact testing of things like Nymbaron.

If you want to help with testing then please consider running miniontest to
give the system a better workout.

Colin
(cside admin)

-- 
Colin Tuckley      |  colin@xxxxxxxxxxx  |  PGP/GnuPG Key Id
+44(0)1903 236872  |  +44(0)7799 143369  |     0x1B3045CE

Do not meddle in the affairs of dragons, for you are crunchy and taste good
with ketchup.

Follow-Ups:
- Re: Servers Should Use a Secure Mix Algorithm
  - From: Thomas Hühn
- Re: Servers Should Use a Secure Mix Algorithm
  - From: BigappleAdmin
- Re: Servers Should Use a Secure Mix Algorithm
  - From: Marco A. Calamari
- Re: Servers Should Use a Secure Mix Algorithm
  - From: Mike Zanker
- Re: Servers Should Use a Secure Mix Algorithm
  - From: Peter Hendrickson

Prev by Author: Re: Servers Should Use a Secure Mix Algorithm
Next by Author: Re: Servers Should Use a Secure Mix Algorithm
Next by thread: Re: Servers Should Use a Secure Mix Algorithm
Index(es):
- Author
- Thread