[Cryptech Tech] Incremental digest outputs

[Basil Dolmatov]

17 нояб. 2014 г., в 23:49, Rob Austein <sra at hactrn.net> написал(а):

> At Mon, 17 Nov 2014 09:52:56 +0100, Joachim Strömbergson wrote:
>> Bernd Paysan wrote:
>>> So yes, I'd like to have a push/pop the current state of a hash
>>> algorithm. That's doable when the entire state is memory mapped.
>> 
>> And fairly easy to add. And then update the security model to state that
>> this assumes that observing the state or manipulating the state by an
>> evildoer is blocked by mechanisms outside of the core.
> 
> So that is one of the real questions: do we need this functionality
> badly enough that we should weaken what protection blue currently has
> against attacks by green?
> 
> I don't think our overall design model ever really expected blue to be
> strongly defended against attacks by green, but one can make both
> Principal of Least Privilege and defense in depth arguments against
> granting green any access it does not really need to do its job.
> 
> Related question: is it green that needs this access, or only other
> parts of blue (ie, other cores)?

I really cannot imagine any _real_ need for that kind of access,

dol@

> _______________________________________________
> Tech mailing list
> Tech at cryptech.is
> https://lists.cryptech.is/listinfo/tech