It's my birthday today*, and so I want to celebrate by getting to know folks who follow me or are otherwise in the range of boosts and other social media generalizations of lightcones.
-
It's my birthday today*, and so I want to celebrate by getting to know folks who follow me or are otherwise in the range of boosts and other social media generalizations of lightcones.
To do so, I'm going to post a thread of questions ranging from the somewhat practical to the absurd. If there are any you have an opinion on** and feel like it'd be fun to chime in on, please do so!
(*opsec failure for me to say that, I guess I need to change my birthday now)
(**within reason!) -
Xandra Granade 🏳️⚧️replied to Xandra Granade 🏳️⚧️ last edited by
1. Do you have a favorite kind of battery, and if so, what is it?
-
Xandra Granade 🏳️⚧️replied to Xandra Granade 🏳️⚧️ last edited by
2. Do you have a favorite complexity class, and if so, what is it?
-
Xandra Granade 🏳️⚧️replied to Xandra Granade 🏳️⚧️ last edited by
3. What's a great JRPG that isn't Final Fantasy that you wish more people would know about? (Or a more obscure / unloved Final Fantasy, really... just something that you want to put in a good word for!)
-
Xandra Granade 🏳️⚧️replied to Xandra Granade 🏳️⚧️ last edited by
4. What's a recent fictional book by someone who isn't a white cisgender man (that is, who is in a relatively less privileged position) that you would love if more people knew about?
-
Xandra Granade 🏳️⚧️replied to Xandra Granade 🏳️⚧️ last edited by
5. Do you have a favorite RFC, and if so, what is it?
-
@xgranade *very excited* RFC 2945 "SRP" https://datatracker.ietf.org/doc/html/rfc2945
(Mechanism for party A to authenticate a "shared secret" [password] with a party B, and B verifies A has the password, but ALSO A verifies B has the password [i.e. you aren't being phished], but ALSO if B is not really B they don't get a copy of the password, and also you can do the entire exchange unencrypted in a public channel and an observer learns nothing useful. AND you negotiate a session key for free in the process.)
-
-
@erincandescent @xgranade What would be an example of a way in which Opaque improves on SRP?
-
@mcc @xgranade it’s a lot less fragile and a lot more efficient (it’s implemented on top of elliptic curves instead of finite field diffie hellman)
See also https://blog.cryptographyengineering.com/should-you-use-srp/