Re: Wi-Fi: Essential Checklist

On Sun, 30 Nov 2008 12:20:32 -0800, John Navas
<spamfilter1@xxxxxxxxxxxxxx> wrote:

On Fri, 28 Nov 2008 12:11:32 -0800, Jeff Liebermann <jeffl@xxxxxxxxxx>
wrote in <a7j0j4homh91cibdsub59kn8n2qqimv9kp@xxxxxxx>:

On Fri, 28 Nov 2008 14:27:06 -0500, John Mason Jr
<notvalid@xxxxxxxxxxxxxxx> wrote:

Interesting counter point to securing your wireless
<http://www.wired.com/politics/security/commentary/securitymatters/2008/01/securitymatters_0110>

Bruce Schneier is a well regarded author of criticism on security
issues. He's made a career of writing articles, columns, and two
books on the topic. Scan the list of titles and tell me if you see a
pattern:
<http://www.schneier.com/essays.html>

...

Do you subscribe to this manner of FUD (fear uncertainty doubt):
"This is not to say that the new wireless security protocol,
WPA, isn't very good. It is. But there are going to be
security flaws in it; there always are."

On further reflection, methinks this might have something to do with him
still being a bit miffed at the way his Twofish algorithm was soundly
trounced by Rijndael (Joan Daemen & Vincent Rijmen) in the Advanced
Encryption Standard (AES) competition. WPA is of course based on AES.
;)

Good point. I didn't make the connection until you mentioned it.
However, I don't think he has any hard feelings. There were 5
algorithms in the AES competition. That means there were 4 other
losers.

Bruce Shneier also has a web page on Twofish that doesn't seem even
slightly irate or miffed:
<http://www.schneier.com/twofish.html>
Lots of applications use Twofish, probably because of the lack of
license fees. Anyway, that was 8 years ago. One would think he has
gotten over it by now.

No matter the reason, justification, or sour grapes, his comment on
WPA might have security flaws is in bad taste, and his subsequent
suggestions to run an open wireless network is just plain lousy
advice.

--
Jeff Liebermann jeffl@xxxxxxxxxx
150 Felker St #D http://www.LearnByDestroying.com
Santa Cruz CA 95060 http://802.11junk.com
Skype: JeffLiebermann AE6KS 831-336-2558
.

Relevant Pages

  • Re: ...Best PGP configuration
    ... In security terms, ... Twofish has the largest security margin (in the ... AES have an inherent advantage in that they are 128-bit block ciphers, ...
    (sci.crypt)
  • Bruce Schneier Presenting Talk in Portland Oregon 12 Apr 06
    ... If you happen to be in Portland Oregon area on 12 Apr 2006... ... going to have Bruce Schneier speak... ... The Regence Group and Counterpane Internet Security, ... 100 Southwest Market Street, Portland, Oregon 97201 ...
    (comp.sys.hp.mpe)
  • Re: Wi-Fi: Essential Checklist
    ... Bruce Schneier is a well regarded author of criticism on security ... Encryption Standard (AES) competition. ... Bruce Shneier also has a web page on Twofish that doesn't seem even ...
    (alt.internet.wireless)
  • Re: Wi-Fi: Essential Checklist
    ... Bruce Schneier is a well regarded author of criticism on security ... He's made a career of writing articles, columns, and two ... most customers still don't have a clue. ... Bruce Schneier has done here is classical FUD. ...
    (alt.internet.wireless)
  • Re: "BEYOND FEAR": New Book by Bruce Schneier
    ... Bruce Schneier writes: ... HOW useful are ID checks in large office buildings? ... several books on security to have appeared since September 11th 2001. ... Security, he observes, is a tax on the honest. ...
    (comp.security.misc)