JAS\JWARS has a requirement to "encrypt" the data we send over the
wire. Since the definition of encryption is TBD, we want to put
something reasonable, and easy, in now, check the box, and move on.
Googling Smalltalk and encryption gets no useful hits.
Any ideas, pointers, war stories appreciated.
Thanks
Donald [|]
DNG has encryption primitives ( AES-256 ) in the VM - it is used to read &
write encrytped images & Smalltalk-Link Libraries - but can be used to
encrypt ordinary data as well.
with best regards, Frank Lesser
<dm...@erols.com> schrieb im Newsbeitrag
news:8664b2fe-831b-437e...@r16g2000vbp.googlegroups.com...
I would try hard to not attempt to invent a new secure protocol (it's
hard). Look for standard solutions first. It's not clear if you're
supposed to protect the data just in transit or if you need an end-to-
end solution where data stays encrypted at the destination too. If the
former the best bet is to use SSL or SSH whichever you have available.
If the latter then you should look at something like PGP or SMIME,
again whatever is available. By available I mean whatever you can find
supported in your smalltalk dialect or maybe even consider using an
external tool/library. Whatever you pick will likely require some
study, unless you are already familiar with these things which may be
in conflict with your "easy" requirement. But if you find these not
easy enough, I can assure you that rolling your own using low level
cryptographic primitives is much, much harder, if you want something
that's any good.
HTH,
Martin
More seriously for your case, you could try wrapping OpenSSL -
shouldn't be that hard if you have people who understand that kind of
thing
On Mar 4, 4:06 pm, "dm...@erols.com" <dm...@erols.com> wrote:
VAST already comes with a wrapper for (part of) OpenSSL. As I understand
some discussion on the VAST support forum, this wrapper isn't fully up
to date, but probably good enough or at least a good starting point.
Greetings,
Joachim
jarober schrieb:
True but VW has a full set of encryption classes written in ST.
--g
symmetric encryption need to be fast as possible - therefore it should be
coded in Assembly - as it in in DNG's VM.
we used encryption algorithms written in Smalltalk to test our adaptive
native compilation to achieve C speed with Smalltalk years ago.
of course there are Smalltalk Libraries available also for Dolphin - and
because DNG is compatible with D6 it will work for DNG
Frank
In the same spirit any general purpose algorithm should be as fast as
possible. It can't hurt and you never know when it might matter,
right? Therefore they all should be written in assembler. :-)
But seriously, the bulk cipher is likely just one part of the solution
that's needed, unless the requirement really is to "encrypt" the data
in transit just for the sake of it. What about the key generation/
management ? What about authentication ? If you don't know who you're
talking to, then what's the point of encrypting the communication ?
And so on... Ultimately you need to figure out what exactly you're
trying to protect from whom and then hopefully find a standard
solution that fits the requirements and your specific circumstances.
Martin
Depends on what it is being used for, passwords, it works fine, small
documents or an email, works fine, however, if one has a 2 meg xml file or
large binary file then it may be too slow.
Also, I do not know but would suspect that DNG makes calls to the OS.
Encoding a full set of encryption algorithms in assembly would be a lot of
work, in assembly means no external calls, the work is done within the code.
I worked in assembly for eight years in an engineering environment doing
math calculations. The matrix transforms by themselves were the size of a
phonebook when printed out.
--g
"geoff" <nos...@nospam.com> schrieb im Newsbeitrag
news:99%rl.80114$Dl2....@fe02.news.easynews.com...
--g
Instantiations has an "Tiny encyption algorithm" for VA Smalltalk in
the goodies section: http://www.instantiations.com/VAST/more/goodies.html.
Greetings, Ben.
--g
which only helps if you use or plan to use VisulWorks ;-) .
But you're right, VW has better support here.
Joachim
Also, on the speed issue, I feel it would be fast enough for most things but
would probably be slow if all you plan to do is encrypt 50 meg files.
--g
How about a SPORT Encryption package?
Please let me know if these are of use to you and I can send them to you.
-- Matt
[Also an implementation of SHA1 hashing algorithm]
Submit them as a goodie to Instantiations. They always retain the name of
the author unless you do not want that.
--g
Do they end up there http://vastgoodies.com/ then?
VastGoodies is exactly what VAST needed, by the way. Something like
the Squeak repositories or like the public store.
Uploading them to VAStGoodies.com would be perfect. Just download
http://vastgoodies.com/maps/VAStGoodies.com%20Tools
and you're set to upload from the Configuration Maps browser.
Adriaan.
On Mar 26, 4:41 pm, "Matt Sims" <matts...@totallyobjects.com> wrote:
[..]
Matt,
I second the request to make your encryption-stuff available. As noted
before, the openssl-interface in VA has it's issues in the current
version.
FWIW, although vastgoodies.com is not operated by Instantiations, it
certainly is endorsed by them.
kind regards,
Louis