Ant Farm Entropy: Sugar Powered Encryption • Suz Hinton • YOW! 2024
About this talk
This presentation was recorded at YOW! Australia 2024. #GOTOcon #YOW https://yowcon.com Suz Hinton - Senior Software Engineer at CrowdStrike @suzhinton9821 @Noopkat RESOURCES https://bsky.app/profile/noopkat.fragile.systems https://github.com/noopkat https://www.linkedin.com/in/susanmhinton https://www.twitch.tv/noopkat Links https://blog.cloudflare.com/randomness-101-lavarand-in-production https://lavarand.org patentimages.storage.googleapis.com/6d/9b/ee/d30a9570cd8af3/US5732138.pdf https://citeseerx.ist.psu.edu/document?repid=rep1&type=pdf&doi=95d5042fc5963d387563247166b7f904fb1153c8 ABSTRACT Randomness is essential for important applications such as the encryption of information. We know computers are bad at generating randomness, therefore much effort has been put into finding strategies to do this reliably and securely. These strategies can range from clever, to complex, to just outright silly. In this talk, we'll cover a research project that aims to answer the question of whether an ant colony can serve as a source for seeding OpenSSL's random number generator. The process, challenges, and findings will be candidly discussed, with something in this presentation for everyone to take away. [...] TIMECODES 00:00 Intro 01:50 Agenda 03:28 Pseudo Random Number Generators (PRNG) 09:54 Sources of "randomness" & chaos systems 14:36 Research into a potentially useful chaos system 19:34 Biological, hardware & software considerations 19:42 Ants 22:50 Hardware 29:18 Software 39:21 Results 40:38 Next steps 42:16 Why do this? 44:30 Outro Download slides and read the full abstract here: https://yowcon.com/brisbane-2024/sessions/3512 RECOMMENDED BOOKS Liz Rice • Container Security • https://amzn.to/3oU4iJe Liz Rice • Kubernetes Security • https://www.oreilly.com/library/view/kubernetes-security/9781492039075 Aaron Parecki • OAuth 2.0 Simplified • https://amzn.to/2A3IMOf Aaron Parecki • OAuth 2.0 Servers • https://amzn.to/3ecHEsz Aaron Parecki • The Little Book of OAuth 2.0 RFCs • https://amzn.to/3i7qnlC Erdal Ozkaya • Cybersecurity: The Beginner's Guide • https://amzn.to/2T6OIj3 https://bsky.app/profile/gotocon.com https://twitter.com/GOTOcon https://www.linkedin.com/company/goto- https://www.instagram.com/goto_con https://www.facebook.com/GOTOConferences #Encryption #ChaosSystem #Privacy #Cloudflare #Lavarand #Security #Cybersecurity #Cryptography #SoftwareEngineering #PRNG #OpenSSL #Programming #SuzHinton #noopkat #YOWcon CHANNEL MEMBERSHIP BONUS Join this channel to get early access to videos & other perks: https://www.youtube.com/channel/UCs_tLP3AiwYKwdUHpltJPuA/join Looking for a unique learning experience? Attend the next GOTO conference near you! Get your ticket at https://gotopia.tech Sign up for updates and specials at https://gotopia.tech/newsletter SUBSCRIBE TO OUR CHANNEL - new videos posted almost daily. https://www.youtube.com/user/GotoConferences/?sub_confirmation=1
Stay Updated
Get notified about new features and conference additions.
