If your goal is just to producing quality papers, this is perfectly great. If your research involves systems and implementations, it sucks to have to write every bits of code yourself. I don't think CS research is just…
I think he literally meant the CVS given the age of Simon... lol
I don't, but I do review papers for people that I don't know if they have a good reputation.
Well, I do agree that students can have different quality, and we shouldn't discriminate Indian students. But the problem is that enough Indian students have made bad reputation for all Indian students here (U.S), and…
I used to think if it's IEEE or ACM, they are ok (not good) to publish. Nowadays, I am not so sure after seeing a bunch of low quality "international" conferences in Asian especially in India. ACM seems a little better…
That's what I am doing for sure now.
well, if someone causes you significant lose, will you turn down a norch? That's why we are bashing on them as they are making BS claims about how secure their protocol is.
I actually have a theory that this is all a scam... the person who found the bug is actually the authors (or a friend) of the Telegram protocol. They published the security issue and reward themselves so that 1) they…
The same reason as why Google provide Gmail for free, 1) to get a huge user base (fame = money, in today's internet world; 2) get a hold of user data
Are you trolling or for real? 1) Telegram is NOT open soure. 2) OTR has been around for years.
Telegram's contest itself is meaningless regarding the security of its protocol (as others explained in details). Finding bugs such as this deserves 200k more than anything else
It's simple unauthenticated Diffie-Hellman key agreement, which is known for MITM attack. Yes, you ask A to accept B's identity upon key exchange, but to what extend A would know B is really B not the server playing…
unauthenticated Diffie-Hellman key agreement is known for MITM attack.
This is like putting messages encrypted with ANY encryption algorithm, and ask people to guess the key. This has nothing to do with whether the communication protocol is secure or not.
The Math PhD who designed the should write the protocol up as a paper, submit to top conferences like CCS and S&P. And he will see how badly the reviewers will dump on his protocol.
The comments from TFA doesn't say a shit but full of "you are wrong, because you don't understand it" without debating the technical details.
I am with you. ACM Champions mean a shit to me, and I have enough publications in crypto and secure communication to claim that I am a ACM Champion, and BTW I have a PHD actually related to security and crypto. But,…
i am with you, i actually think the author coming from economics background who knows nothing about cryptography systems should just shut up before saying anything stupid in public...
If your goal is just to producing quality papers, this is perfectly great. If your research involves systems and implementations, it sucks to have to write every bits of code yourself. I don't think CS research is just…
I think he literally meant the CVS given the age of Simon... lol
I don't, but I do review papers for people that I don't know if they have a good reputation.
Well, I do agree that students can have different quality, and we shouldn't discriminate Indian students. But the problem is that enough Indian students have made bad reputation for all Indian students here (U.S), and…
I used to think if it's IEEE or ACM, they are ok (not good) to publish. Nowadays, I am not so sure after seeing a bunch of low quality "international" conferences in Asian especially in India. ACM seems a little better…
That's what I am doing for sure now.
well, if someone causes you significant lose, will you turn down a norch? That's why we are bashing on them as they are making BS claims about how secure their protocol is.
I actually have a theory that this is all a scam... the person who found the bug is actually the authors (or a friend) of the Telegram protocol. They published the security issue and reward themselves so that 1) they…
The same reason as why Google provide Gmail for free, 1) to get a huge user base (fame = money, in today's internet world; 2) get a hold of user data
Are you trolling or for real? 1) Telegram is NOT open soure. 2) OTR has been around for years.
Telegram's contest itself is meaningless regarding the security of its protocol (as others explained in details). Finding bugs such as this deserves 200k more than anything else
It's simple unauthenticated Diffie-Hellman key agreement, which is known for MITM attack. Yes, you ask A to accept B's identity upon key exchange, but to what extend A would know B is really B not the server playing…
unauthenticated Diffie-Hellman key agreement is known for MITM attack.
This is like putting messages encrypted with ANY encryption algorithm, and ask people to guess the key. This has nothing to do with whether the communication protocol is secure or not.
The Math PhD who designed the should write the protocol up as a paper, submit to top conferences like CCS and S&P. And he will see how badly the reviewers will dump on his protocol.
The comments from TFA doesn't say a shit but full of "you are wrong, because you don't understand it" without debating the technical details.
I am with you. ACM Champions mean a shit to me, and I have enough publications in crypto and secure communication to claim that I am a ACM Champion, and BTW I have a PHD actually related to security and crypto. But,…
i am with you, i actually think the author coming from economics background who knows nothing about cryptography systems should just shut up before saying anything stupid in public...