RE: AEAD in ssh

To: Damien Miller <djm%mindrot.org@localhost>
Subject: RE: AEAD in ssh
From: Peter Gutmann <pgut001%cs.auckland.ac.nz@localhost>
Date: Thu, 25 Feb 2016 04:07:33 +0000

Damien Miller <djm%mindrot.org@localhost> writes:

>Peek-a-Boo makes clear that encrypted lengths aren't *sufficient*, but I 
>don't think it's so clear that they aren't necessary or useful.

I assume you're referring to this subheading:

  Hiding packet lengths is not sufficient.

This is followed by:

  We initiate a study of classifiers that do not directly use fine-grained 
  features such as individual packet lengths. The VNG++ classifier just 
  mentioned uses only “coarse” information, including overall time, total 
  bandwidth, and size of bursts. In fact, we provide a naiive Bayes 
  classifier that uses only the total bandwidth for training and testing, 
  yet still achieves greater than 98% accuracy at k = 2 and 41% accuracy at 
  k = 128. 

So neither of the two classifiers they discuss use plaintext packet length 
information even though it's readily available.  They never really discuss 
whether it's useful or not since they're totally ignoring it, because their
analysis doesn't need it in order to work.

Peter.

References:
- Re: suggestion for new ssh maintenance wg
  - From: denis bider
- AEAD in ssh
  - From: Niels Möller
- Re: AEAD in ssh
  - From: Mark D. Baushke
- Re: AEAD in ssh
  - From: Niels Möller
- Re: AEAD in ssh
  - From: Niels Möller
- Re: AEAD in ssh
  - From: Bryan Ford
- Re: AEAD in ssh
  - From: Niels Möller
- Re: AEAD in ssh
  - From: Bryan Ford
- Re: AEAD in ssh
  - From: Niels Möller
- RE: AEAD in ssh
  - From: Peter Gutmann
- RE: AEAD in ssh
  - From: Damien Miller

Prev by Date: RE: AEAD in ssh
Next by Date: RE: AEAD in ssh
Previous by Thread: RE: AEAD in ssh
Next by Thread: Re: AEAD in ssh
Indexes:

Home | Main Index | Thread Index | Old Index