signonsandiego.com— His project, the "Embedded Secure Network Bridge" has already attracted some attention; not bad for a sixteen year old.
Jun 20, 2006View in Crawl 4
Same. I'm guessing many people today still have the stereotype of the anti-social, 4-eyed, asthma infested, nerd who's afraid of girl and has prescription shoes.
The project mentions that doing encryption in software leaves you vulnerable to software and OS flaws. Ok, possibly. But when there's a problem, there's going to be a fix and you're going to dilligently patch your system.Can't there just as easily (probably even more easily) be a problem in the firmware/hardware? And if so, aren't you at a significant disadvantage when it comes to patching if all your encryption is done on the hardware?
I'm gonna guess from the picture not showing it having pins to go into a PCI or other type of slot and having two RJ45 connectors and it being called a bridge that it doesn't go into a computer but has in and out network connections and works at layer 2 to provide encryption independent of OS or protocol. The serial port could be used for initial configuration. Could provide pretty quick point to point encryption, with no worries about supported OS or patch levels. Like a stealth firewall, you wouldn't even know it was there so it would be difficult to remotely compromise the hardware.
I don't understand. You take a small low power computer, such as the ones available from www.soekris.com, combine it with free software that allows transparent bridging (openbsd) and ssl vpn/ipsec vpn software (openvpn/isakmpd) write a couple configs and you get national news?
area51mafiaJun 21, 2006
Same. I'm guessing many people today still have the stereotype of the anti-social, 4-eyed, asthma infested, nerd who's afraid of girl and has prescription shoes.
b0n0Jun 21, 2006
Why is it that digg refuses to put this story on the front page? 73 diggs so far and counting... <a class="user" href="http://www.digg.com/security/Exhausting_Guide_to_Circumventing_Censorship">http://www.digg.com/security/Exhausting_Guide_to_Circumventing_Censorship</a>
andrew911ttJun 21, 2006
I wish i was as smart as this kid
shaft0rzJun 21, 2006
The project mentions that doing encryption in software leaves you vulnerable to software and OS flaws. Ok, possibly. But when there's a problem, there's going to be a fix and you're going to dilligently patch your system.Can't there just as easily (probably even more easily) be a problem in the firmware/hardware? And if so, aren't you at a significant disadvantage when it comes to patching if all your encryption is done on the hardware?
gabbagabbaheyJun 21, 2006
I'm gonna guess from the picture not showing it having pins to go into a PCI or other type of slot and having two RJ45 connectors and it being called a bridge that it doesn't go into a computer but has in and out network connections and works at layer 2 to provide encryption independent of OS or protocol. The serial port could be used for initial configuration. Could provide pretty quick point to point encryption, with no worries about supported OS or patch levels. Like a stealth firewall, you wouldn't even know it was there so it would be difficult to remotely compromise the hardware.
luminaireJun 23, 2006
I don't understand. You take a small low power computer, such as the ones available from www.soekris.com, combine it with free software that allows transparent bridging (openbsd) and ssl vpn/ipsec vpn software (openvpn/isakmpd) write a couple configs and you get national news?
vsergeevJun 23, 2006
...and I rush to my post: <a class="user" href="http://www.frozeneskimo.com/electronics/?p=66">http://www.frozeneskimo.com/electronics/?p=66</a>