[Dshield] Crypto Question

Valdis.Kletnieks at vt.edu Valdis.Kletnieks at vt.edu
Fri Mar 6 02:52:00 GMT 2009


On Thu, 05 Mar 2009 10:19:52 PST, David Brodbeck said:

> To me this seems like basic "defense in depth."  Engineers would call  
> it redundancy.

Which is why your programs all implement two separate 'sort' routines,
invoke them both, and compare the results, just in case one screws up, right?

Oh, you don't need to do that, because you trust the first sort routine,
and if it was buggy you'd just replace it, because carrying around 2 and doing
it twice is just a pain in the ass for no real gain? Hmm. Gotcha.

Redundancy is all well and good when you're combining multiple ways of
doing it, each of which has a given failure rate but is presumed to usually
still work.  It works great if you have 2 engines each which work 99% of the
time.  It does *NOT* work if one engine has a 'FAILED INSPECTION - DO NOT USE'
sticker on it - at that point, you have *only* the second engine.


-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 226 bytes
Desc: not available
Url : http://lists.sans.org/pipermail/list/attachments/20090305/23124b3c/attachment-0001.bin 


More information about the Dshield mailing list