From owner-freebsd-security@FreeBSD.ORG  Fri Feb 20 22:47:14 2015
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Delivered-To: freebsd-security@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115])
 (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits))
 (No client certificate requested)
 by hub.freebsd.org (Postfix) with ESMTPS id 6BAE1C7
 for <freebsd-security@freebsd.org>; Fri, 20 Feb 2015 22:47:14 +0000 (UTC)
Received: from mail.merrymeet.com (merrymeet.com [173.164.244.100])
 by mx1.freebsd.org (Postfix) with ESMTP id 459277B7
 for <freebsd-security@freebsd.org>; Fri, 20 Feb 2015 22:47:12 +0000 (UTC)
Received: from localhost (localhost [127.0.0.1])
 by mail.merrymeet.com (Postfix) with ESMTP id 98FD269FA01C;
 Fri, 20 Feb 2015 14:37:11 -0800 (PST)
X-Virus-Scanned: amavisd-new at merrymeet.com
Received: from mail.merrymeet.com ([127.0.0.1])
 by localhost (merrymeet.com [127.0.0.1]) (amavisd-new, port 10024)
 with ESMTP id mUfQh-+oR7Tb; Fri, 20 Feb 2015 14:36:59 -0800 (PST)
Received: from keys.merrymeet.com (keys.merrymeet.com [173.164.244.97])
 by mail.merrymeet.com (Postfix) with ESMTPSA id EFE2469F9FEC;
 Fri, 20 Feb 2015 14:36:58 -0800 (PST)
Received: from [10.0.23.30] ([173.164.244.98])
 by keys.merrymeet.com (PGP Universal service);
 Fri, 20 Feb 2015 14:36:59 -0800
X-PGP-Universal: processed;
 by keys.merrymeet.com on Fri, 20 Feb 2015 14:36:59 -0800
Mime-Version: 1.0 (Mac OS X Mail 7.3 \(1878.6\))
Subject: Re: [Cryptography] trojans in the firmware
From: Jon Callas <jon@callas.org>
In-Reply-To: <E1YOTjj-0004uI-59@elasmtp-mealy.atl.sa.earthlink.net>
Date: Fri, 20 Feb 2015 14:36:55 -0800
Message-Id: <711B69EB-1CBF-4F03-9336-AFEBE0B857A0@callas.org>
References: <E1YNSQU-0004pW-Oh@elasmtp-kukur.atl.sa.earthlink.net>
 <E3B30770-BB81-47F1-895D-14CF7FCFC0BE@lrw.com> <54E2B04C.9080707@av8n.com>
 <E1YNuOT-0004uN-CV@elasmtp-mealy.atl.sa.earthlink.net>
 <54E436FB.9000709@deadhat.com>
 <CAAMy4USCzQDO=k3yhZ_LVb4ivz4k5qTCasm3KCen+y1yi8oa+w@mail.gmail.com>
 <CAD2Ti29bD6f7tTq=FgGQDXD43C+zTW0fOWYrbCeTCBmiu0bBqA@mail.gmail.com>
 <E1YOGNA-0004BG-UT@elasmtp-banded.atl.sa.earthlink.net>
 <E1YOTjj-0004uI-59@elasmtp-mealy.atl.sa.earthlink.net>
To: Henry Baker <hbaker1@pipeline.com>
X-Mailer: Apple Mail (2.1878.6)
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: quoted-printable
X-Mailman-Approved-At: Fri, 20 Feb 2015 23:56:34 +0000
Cc: cypherpunks@cpunks.org, freebsd-security@freebsd.org,
 cryptography@metzdowd.com, Jon Callas <jon@callas.org>,
 grarpamp <grarpamp@gmail.com>
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.18-1
Precedence: list
List-Id: "Security issues \[members-only posting\]"
 <freebsd-security.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/options/freebsd-security>, 
 <mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security/>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
 <mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 20 Feb 2015 22:47:14 -0000


On Feb 19, 2015, at 8:12 AM, Henry Baker <hbaker1@pipeline.com> wrote:

> I would love to be able to program this device myself, instead of =
relying on Samsung's firmware.
>=20
> BTW, what's the point of AES encryption on this pre-p0wned device?  =
More security theatre?

NAND memory runs faster when the hamming weight of the data is =
approximately even between zeroes and ones. You can speed up NAND flash =
by running the data through a suitable whitening function.

AES is a great whitening function. If you then go to the extra effort to =
do key management, you have security. It's a simple matter of =
architecture and programming. :)

	Jon