[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: some comments on draft-ietf-psamp-framework-09.txt

Hi Nick,

Your additional sentence looks good.



duffield@research.att.com wrote:
Do we have to say that a hash approximates uniform random sampling?  It does, most of the time, but it's tough to beat uniform random > sampling and with insider information one could defeat a hash.  

I think approximation is a reasonable term, since an approximation can be close or not. The security and robustness issues are discussed more fully in the sampling techniques draft. But to give a flavor of what is needed to avoid the problem you mention, I propose adding a sentence to the framework draft"

"Privacy of hash selection range and hash function parameters (although not the hash function itself) obstruct subversion of the selector by packets that are crafted either to avoid selection or to be selected"