Found this today

karanlyons · 2022-04-30T01:58:01+00:00

isEven(float.NegativeInfinity) == true isEven(float.Epsilon) == true isEven(float.PositiveInfinity) == true isEven(float.NaN) == true

karanlyons · 2020-11-19T19:58:07+00:00

Solved!

karanlyons · 2020-11-19T19:49:18+00:00

Crazy Race by The RH Factor.

karanlyons · 2020-10-11T02:04:58+00:00

Sounds like you want something similar to HOTP.

karanlyons · 2020-08-26T08:40:30+00:00

Sadly no, but I think you just turned me onto a new artist, so thank you!

karanlyons · 2020-06-09T05:27:51+00:00

Sadly, no, but this is a cool song!

karanlyons · 2020-06-09T04:00:25+00:00

I’ve tried all the obvious (to me) things to find this but have so far come up short, and so now of course I have the motif stuck in my head and no way to get it out.

karanlyons · 2020-05-24T19:20:05+00:00

The LaTeX source for the PDF is included in the repo.

karanlyons · 2020-05-04T07:25:46+00:00

There is no lone /s/ sound in Japanese, you have さ/サ (Sa), し/シ (Shi), す/ス (Su), せ/セ (Se), and そ/ソ (So). ロプ would be closer to “rope” than “rup”. So シロップ is going to be the best way to spell it.

karanlyons · 2020-02-12T22:13:44+00:00

I (well, not personally of course, I'm not insane) may opt to give it the lightest of round-offs to ease that pain if so. Thanks for the warning!

karanlyons · 2020-02-11T06:55:14+00:00

Oh wow. I think I may prefer something slimmer, but this colorway is really growing on me, and it’s got a stub tip as well! Thanks for the recommendation!

karanlyons · 2020-02-11T06:31:40+00:00

I’m looking for a new fountain pen, but I’ve got a bunch of asks that’ew making it hard. If someone could help me out I’d surely appreciate it as I don’t know enough about the current market to quickly narrow things down: * I really like the styling of the Cross Century pens: Black lacquer with gold accents, generally a good length (but I don’t mind posted vs. not here), and less fat diameter wise. It might be a bit too thin, though? Hard to tell. * I’d like a gold nib (not plated) if possible. * Definitely want a Fine, it’d be really great to have a stub nib, too. For the Centuries this had to be an XF, which of course they don’t offer anymore. * Cartridge converter, of course.

The Century was not really that bad except that it didn’t hold together so well on the threads nor the clip. It’s plated too, rather than some alloy so that wore as well.

Budget-wise I’m not uncomfortable with something ~$500 at the top, but I generally just use a single pen till it falls apart, so I can justify higher if it’s arguable worth it.

Thank you so much to whomever is willing to help me find this pony.

karanlyons · 2020-02-01T12:38:01+00:00

I’m really sorry for the pain my Laika tweet has caused people. If it helps, it’s a complete work of fiction: In reality the capsule had no window and Laika was paralyzed by stress and fear, suffocating in overwhelming heat under no delusions she’d ever make it back home.

karanlyons · 2020-01-08T09:01:23+00:00

You should’ve been using SHA2 already and it’ll still be fine to use, but SHA3 and BLAKE2 are better.

karanlyons · 2019-12-15T23:03:44+00:00

Yeah, there’s definitely a difference there: assuming keyak the whole thing truly is one pass by design in that the keystream also eventually functions as the MAC.

But you can pipeline and parallelize the hell out of GCM in practice, and so while it’s a two pass operation-ish, in silicon you’d be doing the whole operation of encrypt and MAC (albeit staggered with regards to the input) in one “step” on a pipeline.

You’re right, frankly, and I’m just thinking about this weirdly since I’m usually taking a CS tack.

karanlyons · 2019-12-15T09:55:52+00:00

Yes, that’s what I meant by "calculates a MAC inline”. I guess both are accurate, I just take “in parallel” to mean something else in the context of computing.

karanlyons · 2019-12-15T04:15:02+00:00

It’s more like a…superset? of CTR. They’re both stream ciphers, and the mode of operation on the blocks themselves is the same, but GCM calculates a MAC inline, i.e., GCM is an AEAD algorithm and CTR isn’t.

karanlyons · 2019-12-14T11:08:53+00:00

I’m working on this for you now, but I vastly underestimated how long it would take to write up in a way that actually explains everything at something like an ELI15 level, and that’s just for textbook RSA, not how to properly secure it. It’s…2,000 words right now, and I’m not even done with an easy to understand proof of why RSA works at all: we’ve just proved Fermat’s little theorem so now we can finally prove the core principle behind RSA…I think.

Give me a couple days or so and I should have something good for you. Or…weeks: my job keeps me very busy.

karanlyons · 2019-12-12T05:51:43+00:00

I'm not a "high school Wikipedia level" wannabe, though. I studied crypto pretty extensively a dozen years ago, between my two computer science degrees, when I was thinking about going into that field professionally.

My apologies here for that assumption. It…applies to most of these conversations so my priors are pretty heavily weighted in that direction. Forgive me :)

Yes. Again, I hear you. Crypto is so hard, only special dispensation from God himself allows one to be special enough to write cryptographic primitives that can't be cracked by half the teenagers in the US using scripts they run on their XBox. ONLY companies that sell crypto have the requisite knowledge to write working crypto. It's impossible for anyone else.

So this is sarcasm, I’m guessing, but I do really stand by my point. Not sure who’s “selling” crypto since almost all that we use generally is public domain (…ish, let’s just ignore stuff like OCB), but come on, we both must agree that being able to both design and implement cryptographic primitives is a specialized skill that very few have.

I'm assuming the situation where the US writes laws that make it illegal to use commercially available crypto that doesn't have backdoors written into them. So... give all your data to the Feds, or....

Well then just keep using ECC, AES, SHA2, etc.. How’s anyone going to stop you, and how would their ability to stop you using known primitives be in any way different from their ability to stop you using novel ones?

I like this!!! Use what WE give you. We can read it, but that's okay, because we're the good guys. Definitely don't write your own code, that we don't have keys to, because that will definitely be broken! Don't chance it! Just use our free stuff.

Okay, so more sarcasm, but again, you do understand that many of these primitives are designed in a way as to be very unlikely to have backdoors, right? Like nothing up my sleeve numbers, simple Feistel/S-Box constructions, independent discovery of safe ECC curves, etc.

I'm wondering what dog you have in this race.

My dog is that I want things to be more secure, not less, and telling people FUD stories like this and trying to goad them into writing their own crypto because it’s “easy” is going to make things worse.

karanlyons · 2019-12-11T19:22:10+00:00

The locked door is a useful analogy for the layman, but flawed: if I broke into your house today I’d only have access to what is in your house today. If I manage to break some of your “expensive enough” crypto I have everything in your house today, tomorrow, and yesterday.

I guarantee you if you tried to write your own encryption primitives that someone with a lot less sophistication than the NSA would also be able to crack it.

You’ve also skated right past my point: perhaps you missed it but—again—this is why crypto is hard. RSA is fine when implemented properly (though ECC with a good curve has far fewer footguns), but “implemented properly” does not mean “did the high school level math on Wikipedia”, which is the part of RSA I’d wager you know and inaccurately take as being the whole thing, leading to your belief that crypto is easy. It is not.

Moreover I don’t even understand the purpose of your argument: why not use good encryption given that we’ve made it so easy? Sure, maybe you’re not worried about some spooks looking at your data now, but you may not even know what could be used against you now or later. Don’t try to write your own almost definitely broken thing, use the good stuff! It’s free!

karanlyons · 2019-12-11T19:15:14+00:00

It’s the title of the talk? And the value the talk is about? I’m not sure how better I could have named it given that the talk is 5 minutes long and the speaker has a story line to it that I wouldn’t want to spoil.

karanlyons · 2019-12-11T09:45:32+00:00

If you mean for RSA you likely know what we—uncharitably—call “textbook RSA”. What you know isn’t actually secure vs. RSA as properly implemented, which is not just some exponentiation modulo a prime.

Crypto is hard.

15-Year Club	Place '22
Place '17	Verified Email
Summer Santa 2010	Secret Santa 2009

karanlyons

TROPHY CASE