BingoBoingo: Bitches yelling in the street this morning against Bolsonaro swoon when I say "Make Brasil and Empire Again"
BingoBoingo: I hate much about them
BingoBoingo: And yet they could not be more alien
BingoBoingo: These are a simple people
BingoBoingo: By contrast the Uruguayos...
BingoBoingo: I desperately need higher purpose in my life. Gloria the Peruana adores me so much it is ridiculous. My sex life offer no resistance in the medium. Pizarro is a struggle and I pursue that among peers.
BingoBoingo: They will surely squirm and I will have to rehab my left shoulder several times. But I will lift them.
BingoBoingo: Thankfully Uruguay is a small country and I am young. They will not like it, but because I am young I have time to spend in the pursuit of lifting them.
BingoBoingo: And they became the paper of record because El Pais adopted still more user hostile web design turd traps into their pages
mircea_popescu: as fucking if, these morons trying to "write the news" as per 1980s usg.blue recipes. what are they, stuck with old magazines in an outhouse or something ?
BingoBoingo: It's the sort of monkey noises I can't escape
mircea_popescu: "ve con buenos ojos" ?! whgat the fuck nonsense is this
BingoBoingo: Kinda curious what the police mean by a kilo of hashish considering that's a substance which has gone through some reddit "we R innovators" stuff in the past five years
BingoBoingo: They got trusted with the job of converying product to the local neighborhood dope warehouse forts
BingoBoingo: <asciilifeform> ( and who's to say that borated. can entirely be ordinary. ) << To be clear doping glass is borosilicate because dopers are clumsy when doped. Because dabbing is apparently a thing now titanium means titanium when it comes to dope tools that get heated. Otherwise metal not specified means Zamac, and Aluminum usually means Zamac, because that's what the first A in Zamac is for
BingoBoingo: Meanwhile in local news 2 kilos of meth per person cuffed, moving up in the world https://www.elobservador.com.uy/nota/incautaron-10-kilos-de-metanfetaminas-y-hay-cinco-brasilenos-detenidos-2018102922040
BingoBoingo: Maybe there's a suitcase courier network I missed out on in spite of more than half a year in a hostel
BingoBoingo trying to find explanations other than hunger and misplaced optimism for why borosilicate and genetics sell cheaper here than they do in the US
BingoBoingo: Also December 7, 8, and 9th will be the expocannabis Uruguay. I plan on going there in a recon capacity, if anyone else is looking for a very Uruguay reason to visit Uruguay, that would be the weekend to come on down.
a111: Logged on 2018-10-01 16:30 mircea_popescu: ~then~, after that gets established, one can step down, add another, and so on. like a steps process, with continuity and everything.
mod6: (I bring this all up now, as I want to announce that hanbot and nicoleci are now helping out with the outreach and phone number -- and if there are going to be possible new chair, or added chair, etc)
mod6: iirc mircea_popescu said we could even have three chairs(?) might be mis-remembering that (may have to log-dig for that). I'd be happy to continue doing my role with a TRB focus, or I could step down officially and just keep doing TRB stuffs without the fancy title.
mod6: hanbot nicoleci: Thanks for your hard work this month to get the Toll Free Number setup and going (asciilifeform too). I expect if hanbot were to take an offical Co-Chair seat, she could lead the outreach inititive.
mod6: hanbot: Still have interest in an offical Co-Chair seat for the Foundation?
BingoBoingo: My back's memory is pretty sure a kitted out Sun Ultra 80 will fail to meet the checked bag weight
asciilifeform: mod6: they're a dime a dozen here, but not rally worth cost of transport
BingoBoingo: Anyways, if anyone wants a PPC machine colo'd in Pizarro feel free to inquire. There's not a deep market, but there is one.
BingoBoingo: asciilifeform: the lappy has more ram than I can use
BingoBoingo: Anyways it is amaxing the things that can be had in Uruguay. The grow shops are sitting on piles of borosilicate glass and pointy pieces of titanium because the Uruguayos can't roll good joints and see no reasons to explore alternatives.
BingoBoingo: For the record I played euphonium in high school, have no idea how a saxophone works
mircea_popescu liked ny, but that was more in the 80s.
BingoBoingo: mod6: Still easy by Latin American standards by the book. Easier off the book per the traditional methods.
asciilifeform: i suppose still made in usa, accts for the price
mod6: BingoBoingo: I believe it. It's probably hard to aquire firearms down there 'eh?
mod6: anyway, i guess thats not very redic. i just had it in my mind that a man comes in to buy shotgun. pays, leaves with shotgun. doesn't do very much good if it's still at the store when you need it.
asciilifeform: then again, i saw 80 $ desk lamp being advertised 'layaway'
mod6: lol. i was buying a fishing pole in Show Low the other week... a guy put an 870 on the counter for "Lay-away". I was kinda blown away that still existed.
BingoBoingo: <mod6> CALL 1-900-PANT-SUIT RIGHT NOW TO ORDER YOURS! JUST FIVE EASY INSTALLMENTS OF $12.99! ORDER NOW AND GET AN ENTIRE SECOND UNITARD OUTFIT, FREEEEE!!!!111 << mod6 you would be amazed the things they let people finance here in 18 monthly payments
asciilifeform: face visible, so you can sorta tell the occupants apart
asciilifeform knows what orig pantsuit was, but always pictures it as a sort of jumpsuit, no arms, zips up all the way at the nose , leaving only eyes exposed, gigantic pants
BingoBoingo: New York has done nothing in the interim to redeem its city or its people
BingoBoingo: In 2003 between my junior and senior years of highschool I wrote a piece of music that my computer compiled only for the faggot running the concert to butcher my short biography at the time. http://www.voxnovus.com/60x60/2003_International_Mix.htm
mircea_popescu: well, she partnered with "i was in the situation room!!!! SITTING THERE!!!! WHERE WERE YOU >?!?!?!?!"
mircea_popescu: meanwhile at mp compound, "martha stewart is the one with the conviction and the late night cable tv infomercials. hilary clinton in the one with the failed bids to everything" "you seriously expect me to distinguish these two ? how ?!"
mircea_popescu: (incidentally, for the midden diggers : that "club kids" crew actually invented the pantsuit. yes it's true hilary stwart wore it on tv before going to jail, so it became popular with her fat old white women crowd. but before she could wear it, someone had to make it -- and they did. "here, this is the unitard. This and a hat was basically the whole thing. You can get different hats and I guess paint your face to look differe
BingoBoingo: I'd take banksy a lot more seriously if he caught the bad side of the feds, won on appeal, touched the republic, then decided he could stack his own chairs just fine as he proceeded on his moon mission
mircea_popescu: where the fuck is that line, i recall putting the dork's current fake media effort in the logs at some point, for the 0 readers 0 anything lulz.
mircea_popescu: it's true nobody but ny outfits with ~0 readership or influence a la http://trilema.com/2017/party-monster/ ever mention it. but it seemed to me more the case of "look at st james' desperation to pretend like he's hanging on" than any sort of active pushing.
a111: Logged on 2014-07-19 02:47 Pierre_Rochard: WHCD stands for White House Correspondents Dinner, where journalists go to pretend like they’re doing shit
mircea_popescu: you read http://www.nydailynews.com/news/national/ny-news-banksy-painting-self-destructs-london-20181006-story.html sorta thing in the http://btcbase.org/log/2014-07-19#761410 MATTERS!!! vein ?
BingoBoingo: As opposed to another john oliver turning parody into cancer
BingoBoingo: As best as I can tell banksy does this vague anti-capitalist, anti-fascist schtick to much pantsuitist adoration while a substantial number of nytimes-ish media folk seem to be in on the seekrit
mod6: 404 of them :D
mircea_popescu: well yeah but i mean... so he was on simpsons. i dun see the logic.
BingoBoingo: If you go on 60 minutes, I assume you are going to have them read the articles of surrender while the girls affix their cock cages
BingoBoingo: He did an intro for the Simpsons
mircea_popescu: but yes, sure, i can see the oedipian tragedy of weev.
BingoBoingo: I use weev as the example for the tragedy of him having touched the republic and missed the point.
mircea_popescu: BingoBoingo fwiw i believe bansky makes a way the fuck better example than weev.
BingoBoingo: With some low stakes matters like the cannabis piece I trust myself to do the rewriting, hence the long turn around time. For a piece on Republican doctrine, the republic's gotta weigh in on a draft
mod6: Also, I finally ate the whole block chain again with my node; it's currently syncing the final ~2000 blocks. Should be back up and running fully in the next day or two. Yes, totally got a full back just in case.
mircea_popescu: start with a theoretical idea of blog, resign to how it practically works.
BingoBoingo: I can't effectively read anything without having reread it first, and I can't write pieces over 300 words without needing to rewrite them.
BingoBoingo: Anyways, with the blog business I have resigned myself to the medium's resistance to my filling it. Treating the blog as a notebook that I happen to let others read (A habit I have been suggesting Latinas mulling the blog hobby adopt) I accept there is no shame in rewriting.
mod6: I'm just sitting over here, pondering The Foundation monthly address...
BingoBoingo: I remember reading the original mice and men piece on Trilema and thinking "I gotta start fixing myself"
mircea_popescu: remember back in 2013, when the power-rangers genuinely thought htey had an existence, of their own and by themselves, entirely outside of my say-so ?
BingoBoingo: Anyways, having stepped away from the shovel and rereading I realize I also left out any timelines of the frog boiling
mircea_popescu: but the main issue is that this reads like an approximately sorted succession of conclusions. painfully absent a) the logical justification for the various sentences and b) a very clear indication of structure, how they all work together ; from this b there would then flow a much better a.
mircea_popescu: also, dubious expressions, a collection : "to understand that why they want" ; "if your words actual words are avaible" ; "manufacter a pretext" ; "lack anyway to know" ; "the manufactered insecurity" ; "maladapted in ways invite bullying."
mircea_popescu: and don't be the sixth.
mircea_popescu: also i wouldn't give http://trilema.com/2016/and-they-wont-fucking-yield/#selection-67.90-67.101 & co obscure grupuscle any voice. freeze peach, really ? five morons talking about "things" "as if they were things" dun make "things" anything.
asciilifeform: grr, #9e3779b8, the 1 flips. i'ma leave this alone until proggy.
asciilifeform: likewise, e.g., entire w(1) term will disappear if you have (XOR B E G (RL11 (XOR A D F H #9e3779b9 0)) == #9e3779b9 ( the 1 dun du nuffin, as 9 is odd)
asciilifeform: if you have d,f,h, such that a == d xor f xor h ( or if you like , a xor d == f xor h , or a xor d xor f == h , it's transitive) then a term disappears from the eqn
asciilifeform: cleaning up the above : a, b, c, appear directly 1ce; the rest --only as recurrence terms.
asciilifeform: test is straightforward, you take yer vintage serpent and feed in k1,string, get ciphertext1, k2,string, get ciphertext2, and observe that the ciphertexts are same (cuz key expanded to same thing)
asciilifeform: diana_coman: i'm baking a proggy that shits out sister keys, if it still dun make sense, you can wait till its birthed and try yourself.
asciilifeform: but the rest, appear-directly 1ce.
BingoBoingo: If the censorship resistance piece survives peer review, Imma test it on some orcs and start using it as my explainer to heathens for why the fuck I am in this hell hole
asciilifeform: diana_coman: look at the recurrence, term a appears directly only once, in w(0)
asciilifeform: mircea_popescu: if we can agree to walk the key in same direction, we get same answ
diana_coman: ale for the choice of underlying primitive polynomial but I'm still fuzzy on what goes on in there exactly
a111: Logged on 2018-10-29 16:19 asciilifeform: so all possible inputs where this holds , result in the same inflated-key.
a111: Logged on 2018-10-29 16:18 asciilifeform: so! for instance ! if a, d, f, h are such that xor(a,d,f,h) = 0, then term a no longer appears in the equation at all !
diana_coman: basically I get http://btcbase.org/log/2018-10-29#1867091 BUT can't yet follow it to http://btcbase.org/log/2018-10-29#1867092 mainly because it seems to me that the effect of A is basically in fixing d,f,h (so that xor(a,d,f,h)=0); in short: wouldn't a change (of any number of bits) in a trigger (if imposing xor(a,d,f,h)=0 still) changes further in b-h so that the resulting key schedule is different? theoretically that would be the ration
a111: Logged on 2018-10-29 16:52 asciilifeform: a proggy that takes a 256b key and shits out its 4+ sister-keys, prolly wouldnt hurt, either; if somebody can be arsed to write.
mircea_popescu: on the other hand, entirely unclear to me why the fuck we're discussing some [evidently buggy/misimplemented] program or my own inept handcalculus. either we agree a system of n equations with n unknowns is determinate or we don't and that's the end of the matter.
mircea_popescu: i don't actually follow your proggy any ; regardless, the values it spits dun seem to agree with what i expect.
asciilifeform: except that you did the key walk backwards.
mircea_popescu: by now, covered all the possible combinations of 4 bits (ain't that many) -- but never fell on the mp.py 1010.
asciilifeform: dun have to believe proggy, do it with pen, and write the troof table for xor if you must.
asciilifeform: yer example dun go with the arithmetic on my planet, no matter how i define 'x'
mircea_popescu: unless you're willing do debug the .py, it's spitting out wrong values.
mircea_popescu: i guess this'll have to rest then.
asciilifeform: you're xoring Kbits distinct (if lowest kbit is 0, and there are no symmetries in the message) strings into a Kbits-sized hole.
asciilifeform: in that step, yer message was [1, 1, 1, 0], it got rotated by 1 place, and is then [1, 1, 0, 1], and that's yer buf after 1st step.
asciilifeform: ( keep in mind that [1, 1, 0, 1] is 11, we print the bits in ascending majority. can reverse if it makes moar readable, if you like )
asciilifeform: try the proggy, it will make sense, i suspect
asciilifeform: mircea_popescu: that's the k in my example, neh
mircea_popescu: there's a reason i say " Consider K = 01010"
asciilifeform: ( ty Mocky btw, it's what got the whole thing moving )
a111: Logged on 2018-10-29 19:39 asciilifeform: pretty handy proof , however, that the xor liquishit on the right hand side of those serpent eqs, doesn't conserve entropy !
asciilifeform: you lose the info as it gets xor'd with rotated copies of self.
asciilifeform: knowing the key and the ciphertext tells you almost nuffin about the plaintext, cuz it's a write-only-memory, lol
asciilifeform: the transform is not reversible.
asciilifeform: run the proggy.
BingoBoingo: In other updates: Cansorship resistance piece approaching 1500 words and has yet to advance beyond 2014 Republican state of the art.
mircea_popescu: to be clear : it's exactly the same scheme ; showing you how P ~must~ be obtainable from known K and E.
asciilifeform: so how does this diff from the previous item , what am i missing
mircea_popescu: no no, x is xor * is multiplication (in the sense that if the key is 0 at that offset, the rb dun get applied)
asciilifeform: then i dungetit
mircea_popescu: To obtain P back from E without K : P[1] = P[1] x K[1] * P[1] x K[2] * P[2] x K[3] * P[3] x K[4] * P[4] x K[5] * P[5] ; P[2] = P[2] x K[1] * P[2] x K[2] * P[3] x K[3] * P[4] x K[4] * P[5] x K[5] * P[6] ; and so following all the way down.
mircea_popescu: E therefore is : E1 = 0 x 0 x 1 = 0 ; E2 = 0 x 0 x 1 = 0 ; E3 = 1 x 1 x 0 = 0 ; E4 = 1 x 1 x 0 = 1 ; E5 = 1 x 1 x 1 = 0 thus E = 00010.
asciilifeform: the basic boojum is that it aint a cipher of any kind, and the ubiquitous sbox derpery is simply squid ink to obscure this. maslennikov details how he pointed this out to 1980s kgb and got sacked.
asciilifeform: ( and if mircea_popescu's point was that ~all~ present-day 'block ciphers' are reducible to some variant of it -- the point is made )
a111: Logged on 2018-10-29 18:29 asciilifeform: it's about xor, in the specific style used in winblowz shitware to hide strings from av.
asciilifeform: mircea_popescu: seems to me that ~now~ you correctly defined... the http://btcbase.org/log/2018-10-29#1867192 cipher.
asciilifeform: mircea_popescu: feel free to bake this by curing the little proggy pasted earlier
asciilifeform: diana_coman et al : http://p.bvulpes.com/pastes/uX1BM/?raw=true << for convenience, the recurrence eqs rewritten 1) as sexpr 2) with the orig constant-xors included
mircea_popescu: E is just what these equal to, see.
asciilifeform: 'any one bit of P is the result of xoring of up to k bits of P' << y'mean 'any one bit of E' ?
mircea_popescu: asciilifeform check this out : as per the "chipher", let there be a plaintext P of n bits ; and a key K of k bits. given a ciphertext E of n bits, it is a fact that any one bit of P is the result of xoring of up to k bits of P. if you know K you know ~which ones~, and as you have E you know ~what they must xor to~. this results in a message-wide system of k equations which is determinate.
mircea_popescu: asciilifeform this is so much better than having to correct the title.
asciilifeform: pretty handy proof , however, that the xor liquishit on the right hand side of those serpent eqs, doesn't conserve entropy !
asciilifeform: and before you ask, variant where either key or msg can be longer, http://p.bvulpes.com/pastes/AQPnG/?raw=true , and transpose msg and key for reverse, dun reverse either.
mircea_popescu: asciilifeform like it or not, this is the ur-blockchipher. ALL OTHERS, not only casually but NECESSARILY, are mini-clipped versions of this. "competition or no competition", if it got shitboxes it's this and naught else.
asciilifeform: mircea_popescu: your offsetting rotates (as e.g. ram on z80) or truncates? ( when message is shifted beyond the buffer bound ) ?
mircea_popescu: same procedure, xor the Pmessage as per key.
asciilifeform: ( having, that is, the key )
asciilifeform: shannon already showed how to break, it's in the kindergarden text
asciilifeform: i deciphered these with perl script, for a living, for yrs.
asciilifeform: it's about xor, in the specific style used in winblowz shitware to hide strings from av.
mircea_popescu: ow shit, i mystypoed in the title, wtf is a "chipher".
asciilifeform: lol you almost got me, i half-expected the piece to be about a block cipher
mircea_popescu: i'd have said more, but the editor showed wordcount 777, and i deem this a very good omen re cipher quality.
asciilifeform: diana_coman: http://p.bvulpes.com/pastes/94fgv/?raw=true << the raw emacs-sewed recurrence equations, if it helps
asciilifeform: ( no hard dating for either , tho )
diana_coman: I can cite though from the 2000 paper (or apparently 2000...): "Since then we have sought to strengthen the algorithm and improve its performance. As a result, we have selected new, stornger, S-boxes and changed the key schedule slightly."
asciilifeform: aite, won't distract then
asciilifeform: for lulz, would be interesting to dig up the list of 'luminaries' who voted for serpent. ( last i recall, it was public )
asciilifeform: diana_coman: i'm still boggled re the sheer wtf of it all.
asciilifeform: ( i'd walk over to uni to try an' dig it up, but then remembered that they abolished the paper-papers archive for 'electronic' lulz )
asciilifeform: btw i seem to recall that the original mircea_popescu & diana_coman thread where 'let's try serpent' turned up that the current 'paper' is not in fact the original, and the orig has evaporated. nao gotta wonder what was in it.
asciilifeform: hilariously, i have a tall pile of academiliquishit re serpent right here on desk, and it ALL without exception dwells on the sboxes & lineartransform, 0 discussion of key schedule.
asciilifeform: whether asciilifeform takes month, week, or day, to cough up pill
mircea_popescu: the court will only consider positive cases.
mircea_popescu: the issue is that ~however many~.
BingoBoingo: asciilifeform: If your math stands the week, you may be the best qualified to do the qntra on it
a111: Logged on 2018-10-26 17:04 mircea_popescu: in short, because this winding discussion risks overwhelming buffers, the salient points are a) that i'm not ready to go to war over serpent, it's a meh-maybe item ; b) that building our spearheads around items we're not willing to die for may be how the converse of http://btcbase.org/log-search?q=bitcoin+corrupts altogether.
mircea_popescu: so far, we're still ~in the same position as http://btcbase.org/log/2018-10-26#1866400 / http://btcbase.org/log/2018-10-26#1866449
asciilifeform: washington can pay for its own auto-pill fpga, if they want one tho, i dun see why to do this work for them.
asciilifeform: ( dun forget to acct for the constants )
asciilifeform: a proggy that takes a 256b key and shits out its 4+ sister-keys, prolly wouldnt hurt, either; if somebody can be arsed to write.
asciilifeform: BingoBoingo: mebbe give it a week, whoknows, somebody turns up a mistake in asciilifeform's maffs. then can qntra...
asciilifeform: i can't speak for other folx, but i'ma have to repeat h. hughes, 'fly in it? i wouldn't walk under it'
asciilifeform: i suspect that the thing was a mine planted specifically, if you will, for tmsr.
asciilifeform: 'omfg they bought it'
mircea_popescu: asciilifeform likely explanation being "whisperer", ie, technical quimby sinking it behind the doors because "it's fucking stupid".
mircea_popescu: asciilifeform consider also that if a, b, c, d, e, f are rng words, then (P xor a) xor b) etc does not in fact substract anything.
asciilifeform: entirely possible also that the 'lost despite most votes' thing was engineered stunt.
asciilifeform: it also suggests a very different picture, vs the one i previously supposed, re why it didn't win the tourney. ( rather than washington:'omfg too strong', rather went 'omfg our academi.flunkies kissing arse so hard they cant breathe' )
asciilifeform: hey, it didn't click in asciilifeform's head either until asciilifeform went to fpgaize it..
mircea_popescu: the reason being that it wasn't gonna move till i baked it in some pie.
asciilifeform: thus far, afaik, we already know that there aint 2**256 possible 528-byte serpent expandedkeys. nor 2**128. and as i currently suspect, not even 2**64 .
asciilifeform: for our purposes, that means 'they subtract'.
asciilifeform: they're caesar's cipher.
asciilifeform: you put in 000..., you always get same thing, you put in 111... you get another distinct thing, ditto, and so on
asciilifeform: mircea_popescu: what would mean 'equiprobable' ? they're a 1:1 mapping
mircea_popescu: because if not, then VERY likely what we're seeing is a subclass of http://btcbase.org/log/2018-10-29#1867048
asciilifeform: the actual bitness of serpent , seems like, is so small as to be iterable on pc.
mircea_popescu: right. anyway, back to the practicals -- are sbox outputs ~equiprobable~ ?
mircea_popescu: asciilifeform the objection you had, you know, "this is trivially true but is not what we want" goes very much to the core of the issue -- cryptographic notions of strength are very hard to meaningfully describe mathematically because htey're always "obviously this has ONE trivial solution, but does it have more than the one ?!" math deals in 0 and 1s, it's ill equipped to deal with this batshit nonsense.
asciilifeform: at this point i strongly suspect that the actual bitness, is 64 OR SMALLER
asciilifeform: if xor(c,f,h) = 0 -- then c...
asciilifeform: if xor(b,e,g) = 0, then term b no longer appears in equation...
asciilifeform: so all possible inputs where this holds , result in the same inflated-key.
asciilifeform: so! for instance ! if a, d, f, h are such that xor(a,d,f,h) = 0, then term a no longer appears in the equation at all !
asciilifeform: anything that appears on the right-hand side of one of those xor's, can potentially cancel itself out...
asciilifeform: ),RLeft11(xor(c,f,h,RLeft11(xor(b,e,g,RLeft11(xor(a,d,f,h)))))),RLeft11(xor(e,h,RLeft11(xor(b,e,g,RLeft11(xor(a,d,f,h)))),RLeft11(xor(d,g,RLeft11(xor(a,d,f,h)),RLeft11(xor(c,f,h,RLeft11(xor(b,e,g,RLeft11(xor(a,d,f,h)))))))))))))))))) , and we can ignore these
asciilifeform: but after this, it chews the cud, e.g. W(8) = RLeft11(xor(RLeft11(xor(a,d,f,h)),RLeft11(xor(d,g,RLeft11(xor(a,d,f,h)),RLeft11(xor(c,f,h,RLeft11(xor(b,e,g,RLeft11(xor(a,d,f,h)))))))),RLeft11(xor(f,RLeft11(xor(a,d,f,h)),RLeft11(xor(c,f,h,RLeft11(xor(b,e,g,RLeft11(xor(a,d,f,h)))))),RLeft11(xor(e,h,RLeft11(xor(b,e,g,RLeft11(xor(a,d,f,h)))),RLeft11(xor(d,g,RLeft11(xor(a,d,f,h)),RLeft11(xor(c,f,h,RLeft11(xor(b,e,g,RLeft11(xor(a,d,f,h))))))
asciilifeform: so, continuing: we throw out the constants, and:
asciilifeform: there are exactly as many possible outputs as inputs, and if you xor with the constant again, you get the input back.
asciilifeform: with the tools in the actual box, however, afaik there is no headache of this kind, xor-with-constant is reversible and conserves.
asciilifeform: by this token there exists inverse keccak, consisting of a list of values which when xor'd with any given one, produces original.
mircea_popescu: cuz E4, E5 are the indistinct sysnonyms of P4.
mircea_popescu: and the reverse is 1,2,3,4.
asciilifeform: ( not even speaking of fact that this aint a function of the inputs, in the civilized sense, it is a function of input and rng )
mircea_popescu: can't throw in 5. the P set is 1,2,3,4.
asciilifeform: let's try this. so i throw in {1,2,3,4,5} and the rng cranks and i get a {1,2,3,5,5}, then i put it back and rng cranks again and i get a {1,2,3,4,4}, with nonzero probability. so i reversed ??
mircea_popescu: consider the sets P {1,2,3,4} and E {1,2,3,4,5}. now, the function taking all numbers <4 to themselvews and 4 to either 4 or 5 with 50-50 probability IS in fact reversible (because E5 and E4 are directly P4). is however not in fact entropy conserving.
mircea_popescu: the 5th element of P set.
mircea_popescu: consider the sets P {1,2,3,4} and E {1,2,3,4,5}. now, the function taking all numbers <4 to themselvews and 4 to either 4 or 5 with 50-50 probability IS in fact reversible
mircea_popescu: and in point of fact reversed as the thing works.
mircea_popescu: that they are reversible is tru!
asciilifeform: thinkaboutit, then we'll proceed
asciilifeform: i.e. have exactly same number of possible outputs as there are inputs
asciilifeform: mircea_popescu: they're reversible !
asciilifeform: now we factor out the ... xor 16#9e3779b9# xor Unsigned_32(I), it's an injective operation (neither adds nor subtracts entropy) ;
asciilifeform: let the key words (32bit ea.) be A,B,C,D,E,F,G,H. so W(-8)=A, W(-7)=B, W(-6)=C, W(-5)=D, W(-4)=E, W(-3)=F, W(-2)=G, W(-1)=H ;
asciilifeform: logic : take the key inflator http://ossasepia.com/2018/02/22/eucrypt-chapter-11-serpent/#selection-87.13060-87.13306 ;
asciilifeform: i.e. 85-bit strength, possibly smaller ( i haven't algebraicized the entire recurrence yet )
asciilifeform: mircea_popescu: not only were you right, but i just about have a handle on deriving the factual key bitness of serpent..
mircea_popescu: Mocky_ yeah but i wanted to drive the point home.
asciilifeform: meanwhile, in other lulz, https://archive.is/plVal << trivial local-privesc in xorg ( introduced by shitgnomes in '16 )
diana_coman: asciilifeform, no proof that I'm aware of, as per earlier http://www.dianacoman.com/2017/11/22/taming-of-the-serpent-in-ada/#selection-49.0-49.393
a111: Logged on 2018-10-29 03:26 asciilifeform: nao, exercise for the reader : find the bandwidth of this channel ( how many bits , if more than one, can be stuffed into a block and still preserve this property ) ...
Mocky: http://btcbase.org/log/2018-10-29#1866992 >> using a variation this algo you can stuff a block half full of bits without any 2 consecutive bits being from a known plaintext, while the accumulating xor prevents the penguin
asciilifeform: ( in serpent inflator, the only ops are xor, rotate, and sboxation, all 3 conserve entropy )
asciilifeform: relatedly, asciilifeform tried to bake a proof that the lamehash keyinflater function of serpent is one-to-one ( i.e. actually carries 256bit of the key register's entropy into the 528 bytes of whiteolade ) and not only didnt , but realized that afaik no such proof exists for any 'troo' hash also ( incl keccak.. )
asciilifeform: nao, exercise for the reader : find the bandwidth of this channel ( how many bits , if more than one, can be stuffed into a block and still preserve this property ) ...
asciilifeform: one possible handy algo for the degenerate case of '1 bit of payload per block' -- your block is ~wholesale~ rngolade, and you simply flip the last bit so xor(b0,b1,...,bN) equals your desired payload bit.
asciilifeform: ( without requiring blocks to contain serial #s or anything of the kind )
asciilifeform: it also handily disposes of the penguin.
a111: Logged on 2018-10-29 00:44 mircea_popescu: anyway, the likely reason they don't publish scratchwork is that before republic, nobody had any fucking idea how to do intellectual work. q is a lot like asking "why would doctors not wash hands". because before someone told them to, they didn't, that's why.
asciilifeform: http://btcbase.org/log/2018-10-29#1866964 << specifically in the context of the 'crypto contest' where serpent was trotted out, there was a loud and pompous 'here's ciphers, with jusfifications!' circus. so imho the excuse of 'not knew to wash hands yet' is not available
deedbot: BingoBoingo rated nicoleci 2 << Mircea's chattle, summarizer in training, Outside the Wire
BingoBoingo: !!rate nicoleci 2 Mircea's chattle, summarizer in training, Outside the Wire
BingoBoingo: !!rate nicooleci 2 Mircea's chattle, summarizer in training, Outside the Wire
mircea_popescu: moreover, heathens are generally completely bereft of any kind of thought process. by way of example : http://p.bvulpes.com/pastes/WXFOP/?raw=true
BingoBoingo: And after Kirchner in Argentina, Bolnasaro in Brasil... The Uruguayos on Reddit think planes surely can not be rockets: http://archive.is/dSdho
BingoBoingo: We've documented our victories well, but when explaining to heathens why, collections of log links where the path to victory happens and is discussed often don't quite do it on their own
mircea_popescu: BingoBoingo that's a good idea incidentally. lotta stuff we invented last tuesday and in the brief interval became seemingly "older than dirt" / "in kindergarten!!!" is in fact entirely unheard of outside the walls.
mircea_popescu: anyway, the likely reason they don't publish scratchwork is that before republic, nobody had any fucking idea how to do intellectual work. q is a lot like asking "why would doctors not wash hands". because before someone told them to, they didn't, that's why.
asciilifeform: at this point i strongly suspect that there ~isn't~ a 'why', author pulled thing out of his arse like the others.
asciilifeform: mircea_popescu: i looked over notes from the 1st time i read the thing, and had same reaction then ! but then, left with 'maybe i find why'. 3y later, not found why !
BingoBoingo: Like other Republic pursuits we have experience, practice, and doctrine in the logs but like other things (v state of the art) it could benefit from collection
asciilifeform: '... it was an- alyzed by programs we developed for investigating block ciphers, and we found bounds on the probabilities of the differential and linear characteristics. These bounds show that this choice suits our needs.' << spoiler: also posted nowhere...
asciilifeform: BingoBoingo: aite then
asciilifeform: as if it could possibly matter where you host sumthing if 'customer has come to expect' weev.com as the only way in
BingoBoingo: asciilifeform: It's not for heathens. It's for me and whoever else reads to repackage for heathens.