The Chrome browser recently added a feature that randomizes the order of TLS extensions in an attempt to discourage or impede TLS fingerprinting. Because of this, the fingerprinting techniques used by network defenders and the threat intelligence community need to adapt how they normalize data. Fortunately, there is a simple solution that is quite effective. … Continue reading Sorting Out Randomized TLS Fingerprints
Here is a short, thread-safe, and portable solution to reporting errno conditions in C++: To use this class, just throw one immediately after detecting any error condition that sets errno, such as when an invocation of write() returns -1, like this We derive from runtime_exception so that we work with any code that handles standard … Continue reading Handling errno in multi-threaded C++ code
RC4 is an obsolete cipher that was widely used just a decade ago, despite the fact that it has an exploitable statistical bias. This post shows how to compute the bias, using the neat modern C++ trick of parallel execution policies for the algorithms library, or for_each(std::execution::par). Complete code is available on GitHub. std::for_each() applies … Continue reading RC4 keystream bias, or parallel processing made easy with for_each/accumulate
I got a Batch 6 Framework DIY Edition Laptop, to use as a portable Linux machine. I like it a lot; you might too. This post describes my expectations and impressions, the Gnome tweaks I made for usability, plus some benchmarks. The pic shows what's in the box (clockwise from top left): four expansion cards, … Continue reading Linux on an Framework DIY Edition Laptop
Null Hypothesis is a blog about Cyber Security and Data Science, broadly considered, with an emphasis on Networking and Software. It's written by David McGrew, who has worked in cybersecurity and applied cryptography research, development, and standards for over 25 years. Planned topics include algorithms, programming, crypto (in its proper sense), and open source, and … Continue reading What is Null Hypothesis?
Null Hypothesis 