[liberationtech] on the traceability of circumvention tools
Benedikt Kristinsson
benedikt.k at gmail.com
Thu Sep 16 04:42:08 PDT 2010
On Thu, Sep 16, 2010 at 11:31, Jacob Appelbaum <jacob at appelbaum.net> wrote:
> Speaking of personal failures, I'm pretty much unable to comprehend why
> you just disclosed the above information.
Kerckhoffs law states that a cryptosystem should be secure even if
everything about the system is public knowledge. This is also konwn as
Shannons maxim where it is formulated as "the enemy knows the system".
This is a very important part in all cryptosystems and secure systems
and applies very well here. If the system cannot take full disclosure
it is considered weak. Security though obscurity is a very bad idea.
Regards,
Benedikt Kristinsson
More information about the liberationtech
mailing list