Per the ![[site community profile]](https://www.dreamwidth.org/img/comm_staff.png){kind=small}
dw_news post regarding the MS/TN blocks, we are doing a small code push shortly in order to get the code live. As per usual, please let us know if you see anything wonky.
There is some code cleanup we've been doing that is going out with this push but I don't think there is any new/reworked functionality, so it should be pretty invisible if all goes well.
I will be too busy to post tomorrow.
2012: O2 offers free wifi to multitudes, which I only now realize may be have been referenced in Kingsman, researchers determine that despite a century having passed, the Titanic remains at the bottom of the Atlantic, and in a glorious celebration of the effectiveness of the modern British educational system, doctors warn Britons not to drink liquid nitrogen.
Bold for have read, italic for intend to read, underline for never heard of it.
Which 2012 Clarke Award Finalists Have You Read?
The Testament of Jessie Lamb by Jane Rogers
Embassytown by China Miéville
Hull Zero Three by Greg Bear
Rule 34 by Charles Stross
The Postmortal by Drew Magary
The Waters Rising by Sheri S. Tepper
2012: O2 offers free wifi to multitudes, which I only now realize may be have been referenced in Kingsman, researchers determine that despite a century having passed, the Titanic remains at the bottom of the Atlantic, and in a glorious celebration of the effectiveness of the modern British educational system, doctors warn Britons not to drink liquid nitrogen.
Poll #33559 Clarke Award Finalists 2012
Open to: Registered Users, detailed results viewable to: All, participants: 16
Which 2012 Clarke Award Finalists Have You Read?
View Answers
The Testament of Jessie Lamb by Jane Rogers
0 (0.0%)
Embassytown by China Miéville
9 (56.2%)
Hull Zero Three by Greg Bear
4 (25.0%)
Rule 34 by Charles Stross
10 (62.5%)
The Postmortal by Drew Magary
0 (0.0%)
The Waters Rising by Sheri S. Tepper
4 (25.0%)
Bold for have read, italic for intend to read, underline for never heard of it.
Which 2012 Clarke Award Finalists Have You Read?
The Testament of Jessie Lamb by Jane Rogers
Embassytown by China Miéville
Hull Zero Three by Greg Bear
Rule 34 by Charles Stross
The Postmortal by Drew Magary
The Waters Rising by Sheri S. Tepper
A month of Kidd Pirates [One Piece] Sketches - August
2025-08-31 18:49![[personal profile]](https://www.dreamwidth.org/img/silk/identity/user.png){kind=small}
mekachu04 posting in ![[community profile]](https://www.dreamwidth.org/img/silk/identity/community.png){kind=small}
anime_mangaFandom: One Piece
Author/Artist: Mekachu04
Title: July Punk Aibou Sketches
Pairing: Eustass Kidd & Killer
Rating: teen? it varies from gen/all audience to teen
Word Count: art
Highlight for Warnings: *some implied death/violence but nothing graphic. all are unfinished sketches so clothes might not all be there. *
Disclaimer: Kidd, Killer, the Kidd Pirates and other characters belong to the world of One Piece by Eiichiro Oda. I'm just playing in the sandbox
AN: I'm trying to draw something everyday. So most of these are drawn at about 3-5am in about an hour or two at work during the down time.
started a 50 sentence challenge toward the end of the month with a sketch for each sentance
( thumbnails linking to each day under cut )
Author/Artist: Mekachu04
Title: July Punk Aibou Sketches
Pairing: Eustass Kidd & Killer
Rating: teen? it varies from gen/all audience to teen
Word Count: art
Highlight for Warnings: *some implied death/violence but nothing graphic. all are unfinished sketches so clothes might not all be there. *
Disclaimer: Kidd, Killer, the Kidd Pirates and other characters belong to the world of One Piece by Eiichiro Oda. I'm just playing in the sandbox
AN: I'm trying to draw something everyday. So most of these are drawn at about 3-5am in about an hour or two at work during the down time.
started a 50 sentence challenge toward the end of the month with a sketch for each sentance
( thumbnails linking to each day under cut )
Last weekend, went back to Cleveland with Julie to pick up Erica and meet some of my extended family for a family reunion. Was pretty great. Melissa was there, but Elliott and Simon were absent, since Simon's been traveling a bit rough lately and he was due to start a new preschool soon after.
On Wednesday, Erica started fourth grade, the two intro days followed by a four-day weekend.
On Saturday, I did a bunch of activities with Erica, including going to the Farmers Market and doing some cooking. We went on the tour of the Taza chocolate factory, which has been on my activity to-do list for a while, since that's very close to our house. I made cucumber salad, for which for some reason my mind kept trying to substitute a more nonsensical phrase.
Today, I baked ginger-lemon scones from the Flour cookbook with Erica, which she picked out as a cooking project. Turned out well.
We had an appointment this weekend to get our seasonal vaccines, but it was abruptly cancelled. I'm hoping that things will get sorted out. But the CDC seems to be in an insane state right now, and the government's vaccine policy seems to be at root straight-up in favor of more people getting sick.
(I'm reading A Wind in the Door to Eria and it's uh interesting timing in the context of Sec. Brain-Worm's comments about "mitochondrial challenges".)
On Wednesday, Erica started fourth grade, the two intro days followed by a four-day weekend.
On Saturday, I did a bunch of activities with Erica, including going to the Farmers Market and doing some cooking. We went on the tour of the Taza chocolate factory, which has been on my activity to-do list for a while, since that's very close to our house. I made cucumber salad, for which for some reason my mind kept trying to substitute a more nonsensical phrase.
Today, I baked ginger-lemon scones from the Flour cookbook with Erica, which she picked out as a cooking project. Turned out well.
We had an appointment this weekend to get our seasonal vaccines, but it was abruptly cancelled. I'm hoping that things will get sorted out. But the CDC seems to be in an insane state right now, and the government's vaccine policy seems to be at root straight-up in favor of more people getting sick.
(I'm reading A Wind in the Door to Eria and it's uh interesting timing in the context of Sec. Brain-Worm's comments about "mitochondrial challenges".)
Mississippi site block, plus a small restriction on Tennessee new accounts
2025-08-31 12:28![[staff profile]](https://www.dreamwidth.org/img/silk/identity/user_staff.png){kind=small}
denise posting in dw_newsA reminder to everyone that starting tomorrow, we are being forced to block access to any IP address that geolocates to the state of Mississippi for legal reasons while we and Netchoice continue fighting the law in court. People whose IP addresses geolocate to Mississippi will only be able to access a page that explains the issue and lets them know that we'll be back to offer them service as soon as the legal risk to us is less existential.
The block page will include the apology but I'll repeat it here: we don't do geolocation ourselves, so we're limited to the geolocation ability of our network provider. Our anti-spam geolocation blocks have shown us that their geolocation database has a number of mistakes in it. If one of your friends who doesn't live in Mississippi gets the block message, there is nothing we can do on our end to adjust the block, because we don't control it. The only way to fix a mistaken block is to change your IP address to one that doesn't register as being in Mississippi, either by disconnecting your internet connection and reconnecting it (if you don't have a static IP address) or using a VPN.
In related news, the judge in our challenge to Tennessee's social media age verification, parental consent, and parental surveillance law (which we are also part of the fight against!) ruled last month that we had not met the threshold for a temporary injunction preventing the state from enforcing the law while the court case proceeds.
The Tennesee law is less onerous than the Mississippi law and the fines for violating it are slightly less ruinous (slightly), but it's still a risk to us. While the fight goes on, we've decided to prevent any new account signups from anyone under 18 in Tennessee to protect ourselves against risk. We do not need to block access from the whole state: this only applies to new account creation.
Because we don't do any geolocation on our users and our network provider's geolocation services only apply to blocking access to the site entirely, the way we're implementing this is a new mandatory question on the account creation form asking if you live in Tennessee. If you do, you'll be unable to register an account if you're under 18, not just the under 13 restriction mandated by COPPA. Like the restrictions on the state of Mississippi, we absolutely hate having to do this, we're sorry, and we hope we'll be able to undo it as soon as possible.
Finally, I'd like to thank every one of you who's commented with a message of support for this fight or who's bought paid time to help keep us running. The fact we're entirely user-supported and you all genuinely understand why this fight is so important for everyone is a huge part of why we can continue to do this work. I've also sent a lot of your comments to the lawyers who are fighting the actual battles in court, and they find your wholehearted support just as encouraging and motivating as I do. Thank you all once again for being the best users any social media site could ever hope for. You make me proud and even more determined to yell at state attorneys general on your behalf.
I didn't win any awards in August but I did review 22 more works. James Nicoll Reviews is now 34 reviews away from its 3000th review.
August 2025 in Review
Marooned on a backwater planet, a down-on-his-luck actor sets out to transform his new home. Will he survive success?
Always the Black Knight by Lee Hoffman
( 63. Our Precious Lulu - Anne Fine ) This isn't what I would normally call id fic, but there's something of that visceral satisfaction in it; "person with rubbish family wins in the end".
( 64. The Gabriel Hounds - Mary Stewart ) Not perhaps one of the top Stewarts, but even middling Stewart is pretty good.
( 65. Enchanted Glass - Diana Wynne Jones ) Even a whole bunch of really annoying elements can't take the pleasure out of this book, but it's not one of her top hits.
( 66. The Return of the King - JRR Tolkien ) The triumphant conclusion, followed by lots of realisations about what happens after the triumph and how much harder it gets, and then a whole bunch of appendices, which I enjoyed more than I expected! This is a cracking book, though, even as I develop more complicated feelings about it over time.
( 67. Stone and Sky - Ben Aaronovitch ) Another fun volume; I'm interested in seeing where Aaronovitch is going to take things from here.
( 68. The Islands of Chaldea - Diana Wynne Jones and Ursula Jones ) DWJ is basically never less than entertaining, but this doesn't manage much more than that.
( 69. The Adventure of the Demonic Ox - Lois McMaster Bujold ) I feel like I'm saying this a lot this time, but: this is fine! I enjoyed it! Wasn't much more than that!
( 70. Kid Wolf and Kraken Boy - Sam J Miller ) Fine but I'm not sure I'd read Miller again.
( 71. Behind Frenemy Lines - Zen Cho ) Deeply delightful; I do prefer SFF to romance, but Cho's romances are so fun I don't mind!
( 64. The Gabriel Hounds - Mary Stewart ) Not perhaps one of the top Stewarts, but even middling Stewart is pretty good.
( 65. Enchanted Glass - Diana Wynne Jones ) Even a whole bunch of really annoying elements can't take the pleasure out of this book, but it's not one of her top hits.
( 66. The Return of the King - JRR Tolkien ) The triumphant conclusion, followed by lots of realisations about what happens after the triumph and how much harder it gets, and then a whole bunch of appendices, which I enjoyed more than I expected! This is a cracking book, though, even as I develop more complicated feelings about it over time.
( 67. Stone and Sky - Ben Aaronovitch ) Another fun volume; I'm interested in seeing where Aaronovitch is going to take things from here.
( 68. The Islands of Chaldea - Diana Wynne Jones and Ursula Jones ) DWJ is basically never less than entertaining, but this doesn't manage much more than that.
( 69. The Adventure of the Demonic Ox - Lois McMaster Bujold ) I feel like I'm saying this a lot this time, but: this is fine! I enjoyed it! Wasn't much more than that!
( 70. Kid Wolf and Kraken Boy - Sam J Miller ) Fine but I'm not sure I'd read Miller again.
( 71. Behind Frenemy Lines - Zen Cho ) Deeply delightful; I do prefer SFF to romance, but Cho's romances are so fun I don't mind!
Me, using correct spelling: Those are two entirely different groups of people. Is there any way you can narrow this down even a little?
Them, repeating the wrong spelling: Nope, absolutely not!
**************************
( Read more... )
Them, repeating the wrong spelling: Nope, absolutely not!
( Read more... )
Living in Aberdeen, seeing the grand things around the city centre, it was notable that many of them dated from the Victorian era. I suspected it to be no coincidence that the Victorians saw the height of the British Empire's exploitation of its colonies. With the wealth of others, we built our shiny things. The bridge I walk on to work is nineteenth-century.
In the meantime, Britain declines. Local councils now struggle to provide even basic services. The health system is becoming several kinds of joke, despite the dedication of those working within it. Even those graduating with good undergraduate degrees typically can't get a job that pays well enough for them to be soon on the road to buying a house within reach of the job.
Furthermore, our population is aging. As we end up with fewer working people, and more people needing assistance, the situation can only worsen. Given that our history puts us somewhat in others' debt, I would like to imagine that we could kill two birds with one stone: welcome young families from the British Commonwealth so they can live and work here, providing services and paying tax, ideally building new towns and cities too, while probably also sending some money back home to their families.
Of course, what I describe is not far off the immigration policy we had between, er, around WWII and Margaret Thatcher. We've seen how the Windrush generation has been treated since. Further, populist anti-immigrant rhetoric abounds so we're not about to be saved by welcoming workers from overseas. So, what's the plan? We could make domestic families have lots of babies (not that they can afford anywhere to put them) or we can erode the health service far enough to stop the old people from living for too long.
Looking at the high prices, poor services, and xenophobia, I'd be happy to self-deport. However, for the meantime there are kids in education that I don't want to disrupt. Once everybody graduates, I wouldn't fault any of us for moving elsewhere. In the meantime, I can continue to hope and vote for change, both in the UK and the US.
In the meantime, Britain declines. Local councils now struggle to provide even basic services. The health system is becoming several kinds of joke, despite the dedication of those working within it. Even those graduating with good undergraduate degrees typically can't get a job that pays well enough for them to be soon on the road to buying a house within reach of the job.
Furthermore, our population is aging. As we end up with fewer working people, and more people needing assistance, the situation can only worsen. Given that our history puts us somewhat in others' debt, I would like to imagine that we could kill two birds with one stone: welcome young families from the British Commonwealth so they can live and work here, providing services and paying tax, ideally building new towns and cities too, while probably also sending some money back home to their families.
Of course, what I describe is not far off the immigration policy we had between, er, around WWII and Margaret Thatcher. We've seen how the Windrush generation has been treated since. Further, populist anti-immigrant rhetoric abounds so we're not about to be saved by welcoming workers from overseas. So, what's the plan? We could make domestic families have lots of babies (not that they can afford anywhere to put them) or we can erode the health service far enough to stop the old people from living for too long.
Looking at the high prices, poor services, and xenophobia, I'd be happy to self-deport. However, for the meantime there are kids in education that I don't want to disrupt. Once everybody graduates, I wouldn't fault any of us for moving elsewhere. In the meantime, I can continue to hope and vote for change, both in the UK and the US.
Because Bobby Brainworm is out to get us:
RFK Jr blocked CDC approval of the updated covid vaccine. There are three states where pharmacists can't legally give a vaccine without CDC approval: Massachusetts (where I live), Nevada, and New Mexico. In another 13 states, pharmacists can give the vaccine but only with a prescription, and CVS isn't shipping the vaccine to pharmacies in any of these 16 states.
Note: the vaccine is legally available in every state, because the relevant FDA committee did approve it, but some of us will have to get it from a doctor's office, which will be more of a hassle even when it’s possible.
P.S. Walgreen’s too, per a comment at Universal Hub.
Those are state laws, so call your state representatives and governor and tell them to change it.
( “Massachusetts )
RFK Jr blocked CDC approval of the updated covid vaccine. There are three states where pharmacists can't legally give a vaccine without CDC approval: Massachusetts (where I live), Nevada, and New Mexico. In another 13 states, pharmacists can give the vaccine but only with a prescription, and CVS isn't shipping the vaccine to pharmacies in any of these 16 states.
Note: the vaccine is legally available in every state, because the relevant FDA committee did approve it, but some of us will have to get it from a doctor's office, which will be more of a hassle even when it’s possible.
P.S. Walgreen’s too, per a comment at Universal Hub.
Those are state laws, so call your state representatives and governor and tell them to change it.
( “Massachusetts )
Poll #33552 I knew I forgot something
Open to: Registered Users, detailed results viewable to: All, participants: 69
Cats?
Six works new to me. Three fantasy, three SF, four are series (at least in a sense) and the other two appear to be stand-alone. Lots of TTRPG material.
Books Received, August 23 — August 30
Poll #33551 Books Received, August 23 — August 30
Open to: Registered Users, detailed results viewable to: All, participants: 29
Which of these look interesting?
View Answers
Victoriana by Alex Cahill et al (Q1 2026)
6 (20.7%)
Victoriana Menagerie by Alex Cahill et al (Q1 2026)
5 (17.2%)
The Subtle Art of Folding Space by John Chu (April 2026)
21 (72.4%)
Ship of Spells by H. Leighton Dickson (November 2025)
9 (31.0%)
Warhammer 40,000 Roleplay: Imperium Maledictum, Voll Adventures by Lisa Farrell et al (Q1, 2026)
2 (6.9%)
Coriolis: The Great Dark by Kosta Kostulas et al (August 2025)
13 (44.8%)
for ![[syndicated profile]](https://www.dreamwidth.org/img/silk/identity/feed.png)
chopwood_carrywater_feed. I thought that getting it in my email and on my reading page would help prompt me to call (or email, listen, I have limits) my congresscritters.
**************************
( Read more... )
chopwood_carrywater_feed. I thought that getting it in my email and on my reading page would help prompt me to call (or email, listen, I have limits) my congresscritters.( Read more... )
Given that I am so used to Linux, having a Mac for work always slows me a little. Especially, aspects of the window management and focus ongoingly impede my usual workflows. Another aspect is the keyboard shortcuts. To take a simple example, for cut, copy and paste, where I might be used to control X, C, V on other systems, of course I'm using this command key on the Mac. Except, within Emacs on the Mac, which seems to behave more as I'm used to. Of course, the Mac has a control key too, and it's a common modifier for some other purposes, so I'm often left guessing. For instance, if I recall correctly, in IntelliJ I do use control in pulling up a type hierarchy.
This switching of shortcuts between Linux, Mac, and Emacs-on-Mac is awkward partly because, as above, some of these are quite similar, and I don't yet see a system that helps me remember. Far easier for me was back when I used to use a Programmer Dvorak keyboard layout at work, and regular Qwerty at home, partly because those are just so clearly different. Also, probably it helped that I wasn't switching frequently, just a few times per day.
This switching of shortcuts between Linux, Mac, and Emacs-on-Mac is awkward partly because, as above, some of these are quite similar, and I don't yet see a system that helps me remember. Far easier for me was back when I used to use a Programmer Dvorak keyboard layout at work, and regular Qwerty at home, partly because those are just so clearly different. Also, probably it helped that I wasn't switching frequently, just a few times per day.
This is a small note about a delightful function. Not cryptography advice or serious commentary. Just amusement.
A couple years back I had occasion to read in slightly more detail than I had before about the state of the art in cryptographically secure PRNGs (CSPRNGs). These are PRNGs we trust to have additional properties beyond the speed and randomness requirements of normal ones -- inability for an attacker to reveal internal state, mainly, so you can use them to generate secrets.
If you look, you'll find a lot of people recommending something based on one of Dan Bernstein's algorithms: Salsa20 or ChaCha (or even more obscurely "Snuffle"). All the algorithms we're discussing here are very similar in design, and vary only in minor details of interest only to cryptographers.
If you follow that link though, you'll notice it's a description of a (symmetric) stream cipher. Not a CSPRNG at all!
But that's ok! Because it turns out that people have long known an interesting trick -- actually more of a construction device? -- which is that a CSPRNG "is" a stream cipher. Or rather, if you hold it the other way, you might even say a stream cipher "is" just a CSPRNG. Many stream ciphers are built by deriving an unpredictable "key stream" off the key material and then just XOR'ing it with the plaintext. So long as the "key stream" is unpredictable / has unrecoverable state, this is sufficient; but it's the same condition we want out of the stream of numbers coming out of a CSPRNG, just with "seed" standing in for "key". They're fundamentally the same object.
I knew all this before, so people naming a CSPRNG and a stream cipher the same did not come as any surprise to me. But I went and looked a little further into ChaCha in particular (and its ancestor Salsa and, earlier still, Snuffle) because they have one additional cool and weird property.
They are seekable.
This means that you can, with O(1) effort, "reposition" the Snuffle/Salsa/ChaCha "key stream" / CSPRNG number stream to anywhere in its future. You want the pseudorandom bytes for block 20,000,000? No problem, just "set the position" to 20,000,000 and it will output those bytes. This is not how all CSPRNGs or stream ciphers work. But some do. ChaCha does! Which is very nice. It makes it useful for all sorts of stuff, especially things like partially decrypting randomly-read single blocks in the middle of large files.
I got to wondering about this, so I went back and read through design docs on it, and I discovered something surprising (to me): it's not just afloor wax and dessert topping CSPRNG and stream cipher. ChaCha is also a cryptographic hash function (CHF)! Because a CHF is also something you can build a CSPRNG out of, and therefore also build a stream cipher out of. They're all the same object.
How does the construction work? Embarassingly easily. You put the key material and a counter (and enough fixed nonzero bits to make the CHF happy) in an array and hash it. That's it. The hash output is your block of data. For the next block, you increment the counter and hash again. Want block 20,000,000? Set the counter to 20,000,000. The CHF's one-way-function-ness implies the non-recoverability of the key material and its mixing properties ensure that bumping the counter is enough to flip lots of bits. The end.
Amazing!
But then I got curious and dug a bit into the origins of ChaCha and .. stumbled on something hilarious. In the earliest design doc I could find (Salsa20 Design which still refers to it as "Snuffle 2005") the introduction starts with this:
In other words: the cool seekability wasn't a design goal. Shuffle/Salsa/ChaCha was intended as a tangible demonstration of a political argument that it's stupid to regulate one of the 3 objects (CHF, CSPRNG and stream cipher) since you can build them all out of the CHF. (And, I guess, "obviously you should be allowed to export CHFs" though I wouldn't bet on anything being obvious to the people who make such decisions).
And then I googled more and realized that when I was a teenager I had completely missed all the drama / failed to connect the dots. Snuffle was the subject of Bernstein v. United States, the case that overturned US export restrictions on cryptography altogether! And as this page points out "the subject of the case, Snuffle, was itself an attempt to bypass the regulations".
Anyway, I thought this was both wonderful and funny: both the CHF-to-CSPRNG construction (which I'd never understood/seen before), but also the fact that Snuffle/Salsa/ChaCha is like the ultimate case of winning big in cryptography. Not only does ChaCha now transportlike 99%[EDIT "double-digit percentages"] of the world's internet traffic (it's become the standard we all use because it's fast and secure) but that it was pivotal in the evolution of the legal landscape and all arises from a sort of neener-neener assessment that the law at the time was internally inconsistent / contained a loophole for CHFs that made the whole thing "asinine".
A couple years back I had occasion to read in slightly more detail than I had before about the state of the art in cryptographically secure PRNGs (CSPRNGs). These are PRNGs we trust to have additional properties beyond the speed and randomness requirements of normal ones -- inability for an attacker to reveal internal state, mainly, so you can use them to generate secrets.
If you look, you'll find a lot of people recommending something based on one of Dan Bernstein's algorithms: Salsa20 or ChaCha (or even more obscurely "Snuffle"). All the algorithms we're discussing here are very similar in design, and vary only in minor details of interest only to cryptographers.
If you follow that link though, you'll notice it's a description of a (symmetric) stream cipher. Not a CSPRNG at all!
But that's ok! Because it turns out that people have long known an interesting trick -- actually more of a construction device? -- which is that a CSPRNG "is" a stream cipher. Or rather, if you hold it the other way, you might even say a stream cipher "is" just a CSPRNG. Many stream ciphers are built by deriving an unpredictable "key stream" off the key material and then just XOR'ing it with the plaintext. So long as the "key stream" is unpredictable / has unrecoverable state, this is sufficient; but it's the same condition we want out of the stream of numbers coming out of a CSPRNG, just with "seed" standing in for "key". They're fundamentally the same object.
I knew all this before, so people naming a CSPRNG and a stream cipher the same did not come as any surprise to me. But I went and looked a little further into ChaCha in particular (and its ancestor Salsa and, earlier still, Snuffle) because they have one additional cool and weird property.
They are seekable.
This means that you can, with O(1) effort, "reposition" the Snuffle/Salsa/ChaCha "key stream" / CSPRNG number stream to anywhere in its future. You want the pseudorandom bytes for block 20,000,000? No problem, just "set the position" to 20,000,000 and it will output those bytes. This is not how all CSPRNGs or stream ciphers work. But some do. ChaCha does! Which is very nice. It makes it useful for all sorts of stuff, especially things like partially decrypting randomly-read single blocks in the middle of large files.
I got to wondering about this, so I went back and read through design docs on it, and I discovered something surprising (to me): it's not just a
How does the construction work? Embarassingly easily. You put the key material and a counter (and enough fixed nonzero bits to make the CHF happy) in an array and hash it. That's it. The hash output is your block of data. For the next block, you increment the counter and hash again. Want block 20,000,000? Set the counter to 20,000,000. The CHF's one-way-function-ness implies the non-recoverability of the key material and its mixing properties ensure that bumping the counter is enough to flip lots of bits. The end.
Amazing!
But then I got curious and dug a bit into the origins of ChaCha and .. stumbled on something hilarious. In the earliest design doc I could find (Salsa20 Design which still refers to it as "Snuffle 2005") the introduction starts with this:
Fifteen years ago, the United States government was trying to stop publication
of new cryptographic ideas—but it had made an exception for cryptographic
hash functions, such as Ralph Merkle’s new Snefru.
This struck me as silly. I introduced Snuffle to point out that one can easily
use a strong cryptographic hash function to efficiently encrypt data.
Snuffle 2005, formally designated the “Salsa20 encryption function,” is the
latest expression of my thoughts along these lines. It uses a strong cryptographic
hash function, namely the “Salsa20 hash function,” to efficiently encrypt data.
This approach raises two obvious questions. First, why did I choose this
particular hash function? Second, now that the United States government seems
to have abandoned its asinine policies, why am I continuing to use a hash function
to encrypt data?
In other words: the cool seekability wasn't a design goal. Shuffle/Salsa/ChaCha was intended as a tangible demonstration of a political argument that it's stupid to regulate one of the 3 objects (CHF, CSPRNG and stream cipher) since you can build them all out of the CHF. (And, I guess, "obviously you should be allowed to export CHFs" though I wouldn't bet on anything being obvious to the people who make such decisions).
And then I googled more and realized that when I was a teenager I had completely missed all the drama / failed to connect the dots. Snuffle was the subject of Bernstein v. United States, the case that overturned US export restrictions on cryptography altogether! And as this page points out "the subject of the case, Snuffle, was itself an attempt to bypass the regulations".
Anyway, I thought this was both wonderful and funny: both the CHF-to-CSPRNG construction (which I'd never understood/seen before), but also the fact that Snuffle/Salsa/ChaCha is like the ultimate case of winning big in cryptography. Not only does ChaCha now transport
After I got over my cold, I seemed to get another, for the following weekend, which would fit with my contracting them on my commuting on-site days. For my latest day on-site, I realized that, for Reasons, I used my ScotRail card to ride the Glasgow subway, and my Glasgow subway (really, Strathclyde Partnership for Transport) card for riding the ScotRail trains. I'll be going back in on Monday via a less inverted arrangement. I use smartcards rather than cellphone apps because I dislike being reliant on my telephone and its apps all working.