Profile picture
Sarah Jamie Lewis
@SarahJamieLewis
, 9 tweets, 2 min read Read on Twitter
What a helpful note that is totally indicative of software that is well designed and will likely have no security issues.
It's a public holiday and I'm trying very hard not to go diving into this code.
Seriously....
They have it covered though.
It is 2019, this is not how you design secure usable interfaces. In my opinion, the entire project should be rejected on that premise alone.
This isn't some php web app. The standards for implementing this kind of cryptography should be ridiculously high.

It is your job to prove the code secure, not just in theory, but in practice.
There are mechanisms for preventing entire classes of attacks / errors that would make comments like in the above code not necessary. The fact that such comments are necessary is a red flag.

And this is the point I want to get across. Someone could sit down and go through all the thousands of lines of proof code, in every file, across every integration flow and find no issue - and this code would still be bad.
Also, based on what I have charged for security reviews before, contracts I've reviewed & signed off on in industry, and what I know about the code base so far - such a review would be very, very expensive - way more than the bounty.
Missing some Tweet in this thread?
You can try to force a refresh.

Like this thread? Get email updates or save it to PDF!

Subscribe to Sarah Jamie Lewis
Profile picture

Get real-time email alerts when new unrolls are available from this author!

This content may be removed anytime!

Twitter may remove this content at anytime, convert it as a PDF, save and print for later use!

Try unrolling a thread yourself!

how to unroll video

1) Follow Thread Reader App on Twitter so you can easily mention us!

2) Go to a Twitter thread (series of Tweets by the same owner) and mention us with a keyword "unroll" @threadreaderapp unroll

You can practice here first or read more on our help page!

More from @SarahJamieLewis see all

Profile picture
Sarah Jamie Lewis
@SarahJamieLewis
There is an entire javascript package dedicated to collecting entropy in that codebase.

Hope that was well audited.
It's like a beautiful red flag fractal where the closer you look at any particular red flag the more you find red flags.
Definitely want to make sure that clients using a browser that has been out of extended support for 5 years are generating secure random numbers too.
Read 10 tweets
Profile picture
Sarah Jamie Lewis
@SarahJamieLewis
Some people in this thread asked what I meant by "code that was not written to be easily audited", and asked how they can write audible code.

So join me on this fine Sunday evening as I wax lyrical about writing code that is easy to audit.

First, let me make a distinction between "secure" code and "security driven" code. While the primary purpose of most audits is to "find security bugs", the main driver of that work is determining if the code is "security driven".
Mistakes happen. All the time. Even the best engineering teams on the planet sometimes screw up.

The goal of security driven design is to minimize the impact of mistakes.
Read 17 tweets
Profile picture
Sarah Jamie Lewis
@SarahJamieLewis
So, I took a look at swiss online voting system code that someone leaked, and having written, deployed and audited large enterprise java code...that thing triggers every flag.
The core reencryption mixnet code is spread across dozens of different files, not included the auxiliary/utility/deployment packages.

Also this work in progress is reassuring * a "packed" ciphertext can be mixed, and the data can be recovered, but the proofs dont verify."" src="/images/1px.png" data-src="https://pbs.twimg.com/media/DzofYx9UcAAMYGY.png">
The code looks like it is doing the right things, but this is code that was not written to be easily audited which is concerning for such a security sensitive system.

(tbf it's hard to write enterprise java in an easily audible way, but I've seen it done)
Read 11 tweets

Related threads

Profile picture
planefag
@planefag
Time for Kotobuki, Episode 6.

Will the girls meet some enemies that can GIT GUD, or will the Seal Clubbing Extraordinaire continue? Methinks the former, as we're along far enough now that Plot should be kicking in soon!

ONWARD!
DODO CONTEMPLATES HIS FATE
RAGE, RAGE AGAINST THE DYING OF THE LIGHT
Read 136 tweets
Profile picture
Tessa
@ClacesShadow
Shane is fangirling about meeting Rebekah and Kol, the Original vampires, and bragging about not being able to be compelled. Then Bex tells Kol to beat the location of the cure out of him. Lol. Imagine meeting your idols and they beat the shit out of you.
Back to this. "Truth or dare, Elena?"
"Dare." Damn that's brave.
"I dare you to tell Stefan the truth about Damon."
Sweetie, that's truth not dare, but I am here for this.
"Seriously?!" Caroline being there for Stefan again.
Bex is being really childish though
"Being with Damon makes me happy." HSHDFLK YES IT DOES.
"Makes you happy? Clowns make you happy Elena. Dig a little deeper."
Actually, clowns do quite the opposite of making me happy, but to each their own Rebekah. 🙈
Read 1801 tweets
Profile picture
Simon Elvery
@drzax
Here's someone who's highly engaged in politics, news and society but didn't know about #MyHROptOut until this morning.

If you're in media and wondering if this needs more coverage, here's your answer. #MyHealthRecord #Privacy
Opting out doesn't appear to be going well for people so far. I've seen multiple reports of long wait times on the phone and web server crashes.

I've you're planning to opt out, I'd suggest maybe not doing it today, but definitely not waiting too long.

#MyHealthRecord #Privacy
For the record, I've gone back and forward on opting out myself.

As a journalist with strong interests in tech and privacy, I really want to see the system for myself. Kick its tyres and experience its flaws and limitations personally. But ...

#MyHealthRecord #Privacy
Read 142 tweets
Profile picture
Marshall Ryan Maresca 🛡WAY OF THE SHIELD 10/2/18
@marshallmaresca
I keep thinking back to a discussion a few months on reddit about THE BELGARIAD. Several comments were made about it being cliche and pedestrian, and someone said, “Yeah, it’s a fine story, but it’s never going to be a classic.”
And all I could think to respond was, “It’s over thirty years later and we’re still talking about it. How is that NOT ‘a classic’?
But that got me thinking- I cite THE BELGARIAD (and THE MALLOREON, its sequel series) as one of my influential works. But what is that influence? I know I’ve read the whole series several times. My copies of the books are in terrible shape.
Read 1054 tweets
Profile picture
Paul Johnston
@PaulDJohnston
Well, Germany are rubbish this year #WorldCup #GERSWE
Spoke too soon. Sweden are trying very hard to lose #WorldCup #GERSWE
Like REALLY hard #WorldCup #GERSWE
Read 4 tweets
Profile picture
Jay Zeffren
@zefferal
If I were designing Ravnica 3: An ongoing thread about magic design
It's a topic I've been thinking about for a long time. It's no secret that Ravnica was my 2nd favorite block design, after time spiral
It was a masterclass in 4th age design, w/ its focus on block structure. Rav's structure challenged the audience to think like a designer
Read 148 tweets

Trending hashtags

#sharemondays #CNN #Control #followthevomittrail #OperationGladio #Divorce #Facebook #FoxNews #Iran #Venezuela #Bot #Bannon #surveillance #NeoLiberals #WatchOut #MBS #Fiance #iCloud #Brexit #DeepState #Belgariad #HouldOnToYerData #MicroTargeting #uncool #Assange
Follow Us on Twitter!

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just three indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3.00/month or $30.00/year) and get exclusive features!

Become Premium

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!