<p dir="ltr"><br>
On 24 Oct 2015 01:35, "John-Mark Gurney" <<a href="mailto:jmg@funkthat.com">jmg@funkthat.com</a>> wrote:<br>
><br>
> ianG wrote this message on Fri, Oct 23, 2015 at 16:18 +0100:<br>
> > If I had to have a stab at what this means, I'd say that crypto<br>
> > programming is 90% good programming, 9% good business understanding and<br>
> > 1% crypto.<br>
> ><br>
> > Just to be flagrant, of course! What say others?<br>
></p>
<p dir="ltr">I think it depends entirely on the nature of the crypto system you're building and the risks the crypto is designed to mitigate. Formal academic crypto courses (the one on the course I'm doing) is largely about the mechanisms, the properties of the building blocks and then a little bit about the practical problems like key management. </p>
<p dir="ltr">For the types of system I build this is might be about right but there's a lot more to building good distributed systems than writing good code. It takes experience and practice writing a range of types of systems to design them well which by and large the cryptography experts don't have. </p>
<p dir="ltr">I see the same thing in my sector. For anyone who has worked in financial services with quants for any length of time you may have experienced very capable mathematicians who are convinced they're rock star programmers because it has to be easier than their core skill. </p>
<p dir="ltr">If you're writing an open ssl like library your ratios probably change to bias the crypto element more. </p>
<p dir="ltr">> One BIG issue in crypto code is side channel attacks, and no matter<br>
> how good a programmer you are, you aren't going to code for side<br>
> channel attacks because it intentionally makes your program slower...<br>
></p>
<p dir="ltr">I agree, but significant improvement could be made by being better developers of systems which focus on *all* of the issues. </p>
<p dir="ltr">> GCM for example will leak like a sieve if you use an 8bit lookup<br>
> table, which is the best/fastest way to implement it on modern<br>
> systems...<br>
><br>
> This aspect alone puts the crypto at minimum 10-20%. Yes, it isn't<br>
> complex, but is absolutely manditory.</p>
<p dir="ltr">Again, I think it depends on the nature of the application of the crypto. </p>
<p dir="ltr">><br>
> --<br>
> John-Mark Gurney Voice: +1 415 225 5579<br>
><br>
> "All that I will do, has been done, All that I have, has not."<br>
> _______________________________________________<br>
> The cryptography mailing list<br>
> <a href="mailto:cryptography@metzdowd.com">cryptography@metzdowd.com</a><br>
> <a href="http://www.metzdowd.com/mailman/listinfo/cryptography">http://www.metzdowd.com/mailman/listinfo/cryptography</a></p>