%PDF-1.3
%âãÏÓ
2 0 obj
<<
/Length 1006
>>
stream
BT
/TT2 1 Tf
0 23 -23 0 141 179.087 Tm
0 g
/GS1 gs
0 Tc
0 Tw
(Cryptography in OpenBSD: An overview)Tj
6.1255 -3 TD
(Theo de Raadt)Tj
-0.4845 -1 TD
(Niklas Hallqvist)Tj
-0.14 -1 TD
(Artur Grabowski)Tj
-1.1395 -1 TD
(Angelos D. Keromytis)Tj
2.167 -1 TD
(Niels Provos)Tj
-8.1835 -2 TD
({deraadt,niklas,art,angelos,provos}@openbsd.org)Tj
ET
0 G
1 J 1 j 0.012 w 10 M []0 d
1 i
108.03 72.03 m
504.03 72.03 l
504.001 72.012 m
523.873 72.012 540.001 88.14 540.001 108.012 c
540.03 108.03 m
540.03 318.03 l
540.03 474.03 m
540.03 633.27 l
540.001 684.012 m
540.001 703.884 523.873 720.012 504.001 720.012 c
504.03 720.03 m
108.03 720.03 l
108.001 720.012 m
88.129 720.012 72.001 703.884 72.001 684.012 c
72.03 684.03 m
72.03 108.03 l
72.001 108.012 m
72.001 88.14 88.129 72.012 108.001 72.012 c
S
BT
/TT4 1 Tf
0 9 -9 0 543.001 320.211 Tm
-0.0001 Tc
0.0001 Tw
[(Cryptography)-250.1(i)-0.1(n)-250.1(OpenBSD: An Ov)14.9(ervie)24.9(w)-18190.1(Jun 10, 1999)]TJ
/TT6 1 Tf
0 14 -14 0 588 712.8 Tm
0 Tc
0 Tw
(Page 1)Tj
ET
endstream
endobj
3 0 obj
<<
/ProcSet [/PDF /Text ]
/Font <<
/TT2 4 0 R
/TT4 5 0 R
/TT6 6 0 R
>>
/ExtGState <<
/GS1 7 0 R
>>
>>
endobj
10 0 obj
<<
/Length 1397
>>
stream
BT
/TT2 1 Tf
0 23 -23 0 95 168.231 Tm
0 g
/GS1 gs
0 Tc
0 Tw
[(Cryptography in Operating Systems: T)111(oday)]TJ
-2.6187 -3 TD
[(Cryptography does not neccesarily provide security)92(..)]TJ
0 -2 TD
(But without hard and reliable security mechanisms,)Tj
0 -1 TD
(crypto is often the only tool available in some )Tj
/TT7 1 Tf
21.0825 0 TD
(Þ)Tj
/TT2 1 Tf
0.6108 0 TD
(elds,)Tj
-21.6934 -1 TD
(ie. network "security")Tj
0 -2 TD
(Crypto provides solutions for certain problems that)Tj
0 -1 TD
(cannot be solved in other ways.)Tj
0 -2 TD
[(T)111(oday)92(,)-250(most systems ship with no cryptography)]TJ
T*
[(Some systems ship with very limited cryptography)92(,)-250(ie.)]TJ
0 -1 TD
(DES or MD5 for authentication of passwords)Tj
ET
0 G
1 J 1 j 0.012 w 10 M []0 d
1 i
108.03 72.03 m
504.03 72.03 l
504.001 72.012 m
523.873 72.012 540.001 88.14 540.001 108.012 c
540.03 108.03 m
540.03 318.03 l
540.03 474.03 m
540.03 633.27 l
540.001 684.012 m
540.001 703.884 523.873 720.012 504.001 720.012 c
504.03 720.03 m
108.03 720.03 l
108.001 720.012 m
88.129 720.012 72.001 703.884 72.001 684.012 c
72.03 684.03 m
72.03 108.03 l
72.001 108.012 m
72.001 88.14 88.129 72.012 108.001 72.012 c
S
BT
/TT4 1 Tf
0 9 -9 0 543.001 320.211 Tm
-0.0001 Tc
0.0001 Tw
[(Cryptography)-250.1(i)-0.1(n)-250.1(OpenBSD: An Ov)14.9(ervie)24.9(w)-18190.1(Jun 10, 1999)]TJ
/TT6 1 Tf
0 14 -14 0 588 712.8 Tm
0 Tc
0 Tw
(Page 2)Tj
ET
endstream
endobj
11 0 obj
<<
/ProcSet [/PDF /Text ]
/Font <<
/TT2 4 0 R
/TT4 5 0 R
/TT6 6 0 R
/TT7 12 0 R
>>
/ExtGState <<
/GS1 7 0 R
>>
>>
endobj
14 0 obj
<<
/Length 1223
>>
stream
BT
/TT2 1 Tf
0 23 -23 0 95 365.973 Tm
0 g
/GS1 gs
0 Tc
0 Tw
(Why?)Tj
-11.2162 -2 TD
(All major operating systems are "shipped" from USA)Tj
0 -1 TD
(... except for 2 or so \(OpenBSD, QNX; as far as I know\))Tj
0 -2 TD
(Meanwhile non-USA Linux distributions wish to)Tj
0 -1 TD
(avoid greater incompatible with their USA)Tj
T*
(counterparts)Tj
0 -2 TD
[(It’)55(s)-250(may be a world of USA software, but it is a)]TJ
0 -1 TD
(WORLD market... so no crypto)Tj
0 -2 TD
(Many groups are forced to come up with clever ways)Tj
0 -1 TD
(to by-pass the laws..)Tj
ET
0 G
1 J 1 j 0.012 w 10 M []0 d
1 i
108.03 72.03 m
504.03 72.03 l
504.001 72.012 m
523.873 72.012 540.001 88.14 540.001 108.012 c
540.03 108.03 m
540.03 318.03 l
540.03 474.03 m
540.03 633.27 l
540.001 684.012 m
540.001 703.884 523.873 720.012 504.001 720.012 c
504.03 720.03 m
108.03 720.03 l
108.001 720.012 m
88.129 720.012 72.001 703.884 72.001 684.012 c
72.03 684.03 m
72.03 108.03 l
72.001 108.012 m
72.001 88.14 88.129 72.012 108.001 72.012 c
S
BT
/TT4 1 Tf
0 9 -9 0 543.001 320.211 Tm
-0.0001 Tc
0.0001 Tw
[(Cryptography)-250.1(i)-0.1(n)-250.1(OpenBSD: An Ov)14.9(ervie)24.9(w)-18190.1(Jun 10, 1999)]TJ
/TT6 1 Tf
0 14 -14 0 588 712.8 Tm
0 Tc
0 Tw
(Page 3)Tj
ET
endstream
endobj
15 0 obj
<<
/ProcSet [/PDF /Text ]
/Font <<
/TT2 4 0 R
/TT4 5 0 R
/TT6 6 0 R
>>
/ExtGState <<
/GS1 7 0 R
>>
>>
endobj
17 0 obj
<<
/Length 1379
>>
stream
BT
/TT2 1 Tf
0 23 -23 0 95 266.958 Tm
0 g
/GS1 gs
0 Tc
0 Tw
(Those darn pesky laws...)Tj
-6.9112 -2 TD
[(IT)92(AR prohibits export of cryptography from the USA,)]TJ
0 -1 TD
(but permits export of cryptography to Canada)Tj
0 -2 TD
(Canada permits export of cryptography \(though a few)Tj
0 -1 TD
[(cases require registration\).)-500(However)55(,)-250("free" types are)]TJ
T*
(always permitted)Tj
0 -2 TD
(France: restrictive until recently; new rules USA-like)Tj
0 -1 TD
(Germany: making statements about greater freedom)Tj
T*
(UK, Russia, Sweden: waddling)Tj
0 -2 TD
[(W)74(e)74( )-74(ship from Canada, and use only crypto from)]TJ
0 -1 TD
(countries which satisfy our own rules of "free)Tj
T*
(enough".)Tj
ET
0 G
1 J 1 j 0.012 w 10 M []0 d
1 i
108.03 72.03 m
504.03 72.03 l
504.001 72.012 m
523.873 72.012 540.001 88.14 540.001 108.012 c
540.03 108.03 m
540.03 318.03 l
540.03 474.03 m
540.03 633.27 l
540.001 684.012 m
540.001 703.884 523.873 720.012 504.001 720.012 c
504.03 720.03 m
108.03 720.03 l
108.001 720.012 m
88.129 720.012 72.001 703.884 72.001 684.012 c
72.03 684.03 m
72.03 108.03 l
72.001 108.012 m
72.001 88.14 88.129 72.012 108.001 72.012 c
S
BT
/TT4 1 Tf
0 9 -9 0 543.001 320.211 Tm
-0.0001 Tc
0.0001 Tw
[(Cryptography)-250.1(i)-0.1(n)-250.1(OpenBSD: An Ov)14.9(ervie)24.9(w)-18190.1(Jun 10, 1999)]TJ
/TT6 1 Tf
0 14 -14 0 588 712.8 Tm
0 Tc
0 Tw
(Page 4)Tj
ET
endstream
endobj
18 0 obj
<<
/ProcSet [/PDF /Text ]
/Font <<
/TT2 4 0 R
/TT4 5 0 R
/TT6 6 0 R
>>
/ExtGState <<
/GS1 7 0 R
>>
>>
endobj
20 0 obj
<<
/Length 892
>>
stream
BT
/TT2 1 Tf
0 23 -23 0 95 327.954 Tm
0 g
/GS1 gs
0 Tc
0 Tw
(From where?)Tj
-9.5632 -2 TD
(Australia)Tj
0 -1 TD
(Sweden)Tj
T*
(Norway)Tj
T*
(Germany)Tj
T*
(Greece)Tj
T*
(Canada)Tj
T*
(Denmark)Tj
T*
(Finland)Tj
T*
(UK)Tj
ET
0 G
1 J 1 j 0.012 w 10 M []0 d
1 i
108.03 72.03 m
504.03 72.03 l
504.001 72.012 m
523.873 72.012 540.001 88.14 540.001 108.012 c
540.03 108.03 m
540.03 318.03 l
540.03 474.03 m
540.03 633.27 l
540.001 684.012 m
540.001 703.884 523.873 720.012 504.001 720.012 c
504.03 720.03 m
108.03 720.03 l
108.001 720.012 m
88.129 720.012 72.001 703.884 72.001 684.012 c
72.03 684.03 m
72.03 108.03 l
72.001 108.012 m
72.001 88.14 88.129 72.012 108.001 72.012 c
S
BT
/TT4 1 Tf
0 9 -9 0 543.001 320.211 Tm
-0.0001 Tc
0.0001 Tw
[(Cryptography)-250.1(i)-0.1(n)-250.1(OpenBSD: An Ov)14.9(ervie)24.9(w)-18190.1(Jun 10, 1999)]TJ
/TT6 1 Tf
0 14 -14 0 588 712.8 Tm
0 Tc
0 Tw
(Page 5)Tj
ET
endstream
endobj
21 0 obj
<<
/ProcSet [/PDF /Text ]
/Font <<
/TT2 4 0 R
/TT4 5 0 R
/TT6 6 0 R
>>
/ExtGState <<
/GS1 7 0 R
>>
>>
endobj
23 0 obj
<<
/Length 1071
>>
stream
BT
/TT2 1 Tf
0 23 -23 0 95 323.182 Tm
0 g
/GS1 gs
0 Tc
0 Tw
(And patents...)Tj
-9.3557 -2 TD
[(In particular)55(,)-250(RSA and their nasty lawyers.)]TJ
T*
(Require a licence for commercial use of the RSA)Tj
0 -1 TD
(algorithm within USA)Tj
0 -2 TD
[(W)74(e)74( )-74(cannot use IDEA either)55(.)-500(More nasty lawyers.)]TJ
T*
(So... we use a trick to avoid the RSA licensing)Tj
0 -1 TD
(problem.)Tj
ET
0 G
1 J 1 j 0.012 w 10 M []0 d
1 i
108.03 72.03 m
504.03 72.03 l
504.001 72.012 m
523.873 72.012 540.001 88.14 540.001 108.012 c
540.03 108.03 m
540.03 318.03 l
540.03 474.03 m
540.03 633.27 l
540.001 684.012 m
540.001 703.884 523.873 720.012 504.001 720.012 c
504.03 720.03 m
108.03 720.03 l
108.001 720.012 m
88.129 720.012 72.001 703.884 72.001 684.012 c
72.03 684.03 m
72.03 108.03 l
72.001 108.012 m
72.001 88.14 88.129 72.012 108.001 72.012 c
S
BT
/TT4 1 Tf
0 9 -9 0 543.001 320.211 Tm
-0.0001 Tc
0.0001 Tw
[(Cryptography)-250.1(i)-0.1(n)-250.1(OpenBSD: An Ov)14.9(ervie)24.9(w)-18190.1(Jun 10, 1999)]TJ
/TT6 1 Tf
0 14 -14 0 588 712.8 Tm
0 Tc
0 Tw
(Page 6)Tj
ET
endstream
endobj
24 0 obj
<<
/ProcSet [/PDF /Text ]
/Font <<
/TT2 4 0 R
/TT4 5 0 R
/TT6 6 0 R
>>
/ExtGState <<
/GS1 7 0 R
>>
>>
endobj
26 0 obj
<<
/Length 1271
>>
stream
BT
/TT2 1 Tf
0 23 -23 0 95 266.015 Tm
0 g
/GS1 gs
0 Tc
0 Tw
(And the tie in to security)Tj
-6.8702 -2 TD
(Our project place much emphasis on security)Tj
T*
[(T)111(o)111( )-111(improve security)92(,)-250(w)0(e)-250(expend signi)]TJ
/TT7 1 Tf
16.9069 0 TD
(Þ)Tj
/TT2 1 Tf
0.6108 0 TD
[(cant ef)18(fort)]TJ
-17.5177 -1 TD
(doing)Tj
0.4897 -2 TD
[(•)-469.6(E)0(f)18(forts to repair problems as quickly as possible)]TJ
0 -1 TD
[(•)-469.6(Design analysis)]TJ
T*
[(•)-469.6(Source code audits)]TJ
-0.4897 -2 TD
(It would be irresponsible if we did not investigate)Tj
0.5 -1 TD
(cryptographic solutions)Tj
ET
0 G
1 J 1 j 0.012 w 10 M []0 d
1 i
108.03 72.03 m
504.03 72.03 l
504.001 72.012 m
523.873 72.012 540.001 88.14 540.001 108.012 c
540.03 108.03 m
540.03 318.03 l
540.03 474.03 m
540.03 633.27 l
540.001 684.012 m
540.001 703.884 523.873 720.012 504.001 720.012 c
504.03 720.03 m
108.03 720.03 l
108.001 720.012 m
88.129 720.012 72.001 703.884 72.001 684.012 c
72.03 684.03 m
72.03 108.03 l
72.001 108.012 m
72.001 88.14 88.129 72.012 108.001 72.012 c
S
BT
/TT4 1 Tf
0 9 -9 0 543.001 320.211 Tm
-0.0001 Tc
0.0001 Tw
[(Cryptography)-250.1(i)-0.1(n)-250.1(OpenBSD: An Ov)14.9(ervie)24.9(w)-18190.1(Jun 10, 1999)]TJ
/TT6 1 Tf
0 14 -14 0 588 712.8 Tm
0 Tc
0 Tw
(Page 7)Tj
ET
endstream
endobj
27 0 obj
<<
/ProcSet [/PDF /Text ]
/Font <<
/TT2 4 0 R
/TT4 5 0 R
/TT6 6 0 R
/TT7 12 0 R
>>
/ExtGState <<
/GS1 7 0 R
>>
>>
endobj
29 0 obj
<<
/Length 1158
>>
stream
BT
/TT2 1 Tf
0 23 -23 0 95 248.731 Tm
0 g
/GS1 gs
0 Tc
0 Tw
(So where does the crypto go)Tj
-6.1187 -2 TD
(SSH)Tj
0 -1 TD
(SSL)Tj
T*
(IPSEC)Tj
1 -1 TD
(IKE, photuris)Tj
T*
(DES, 3DES, Cast-128, Blow)Tj
/TT7 1 Tf
12.3306 0 TD
(Þ)Tj
/TT2 1 Tf
0.6108 0 TD
(sh, Skipjack)Tj
-12.9414 -1 TD
(MD5, SHA1, RIPEMD160)Tj
-1 -1 TD
(Kerberos IV)Tj
T*
(S/Key)Tj
T*
(strong and pseudo random numbers)Tj
T*
(Secure storage)Tj
T*
(bcrypt)Tj
0 -3 TD
(In essence, little bits of it all over the place.)Tj
ET
0 G
1 J 1 j 0.012 w 10 M []0 d
1 i
108.03 72.03 m
504.03 72.03 l
504.001 72.012 m
523.873 72.012 540.001 88.14 540.001 108.012 c
540.03 108.03 m
540.03 318.03 l
540.03 474.03 m
540.03 633.27 l
540.001 684.012 m
540.001 703.884 523.873 720.012 504.001 720.012 c
504.03 720.03 m
108.03 720.03 l
108.001 720.012 m
88.129 720.012 72.001 703.884 72.001 684.012 c
72.03 684.03 m
72.03 108.03 l
72.001 108.012 m
72.001 88.14 88.129 72.012 108.001 72.012 c
S
BT
/TT4 1 Tf
0 9 -9 0 543.001 320.211 Tm
-0.0001 Tc
0.0001 Tw
[(Cryptography)-250.1(i)-0.1(n)-250.1(OpenBSD: An Ov)14.9(ervie)24.9(w)-18190.1(Jun 10, 1999)]TJ
/TT6 1 Tf
0 14 -14 0 588 712.8 Tm
0 Tc
0 Tw
(Page 8)Tj
ET
endstream
endobj
30 0 obj
<<
/ProcSet [/PDF /Text ]
/Font <<
/TT2 4 0 R
/TT4 5 0 R
/TT6 6 0 R
/TT7 12 0 R
>>
/ExtGState <<
/GS1 7 0 R
>>
>>
endobj
32 0 obj
<<
/Length 1186
>>
stream
BT
/TT2 1 Tf
0 23 -23 0 95 372.367 Tm
0 g
/GS1 gs
0 Tc
0 Tw
(SSH)Tj
-11.4942 -2 TD
(ssh v1 uses RSA code; besides... it is not really free)Tj
0 -1 TD
(code)Tj
0 -2 TD
(ssh v2 can use other algorithms... even more restrictive)Tj
0 -1 TD
(licensing)Tj
0 -2 TD
(No free high-quality versions available yet.)Tj
T*
[(W)74(e)74( )-74(WISH there was a good free version!)]TJ
T*
[(However)55(,)-250(w)0(e)-250(include a package for each architecture)]TJ
0 -1 TD
(on our FTP sites, since we cannot include it on the CD.)Tj
ET
0 G
1 J 1 j 0.012 w 10 M []0 d
1 i
108.03 72.03 m
504.03 72.03 l
504.001 72.012 m
523.873 72.012 540.001 88.14 540.001 108.012 c
540.03 108.03 m
540.03 318.03 l
540.03 474.03 m
540.03 633.27 l
540.001 684.012 m
540.001 703.884 523.873 720.012 504.001 720.012 c
504.03 720.03 m
108.03 720.03 l
108.001 720.012 m
88.129 720.012 72.001 703.884 72.001 684.012 c
72.03 684.03 m
72.03 108.03 l
72.001 108.012 m
72.001 88.14 88.129 72.012 108.001 72.012 c
S
BT
/TT4 1 Tf
0 9 -9 0 543.001 320.211 Tm
-0.0001 Tc
0.0001 Tw
[(Cryptography)-250.1(i)-0.1(n)-250.1(OpenBSD: An Ov)14.9(ervie)24.9(w)-18190.1(Jun 10, 1999)]TJ
/TT6 1 Tf
0 14 -14 0 588 712.8 Tm
0 Tc
0 Tw
(Page 9)Tj
ET
endstream
endobj
33 0 obj
<<
/ProcSet [/PDF /Text ]
/Font <<
/TT2 4 0 R
/TT4 5 0 R
/TT6 6 0 R
>>
/ExtGState <<
/GS1 7 0 R
>>
>>
endobj
35 0 obj
<<
/Length 1393
>>
stream
BT
/TT2 1 Tf
0 23 -23 0 95 253.871 Tm
0 g
/GS1 gs
0 Tc
0 Tw
(SSL \(Secure Sockets Layer\))Tj
-6.3422 -2 TD
[(W)74(e)74( )-74(use SSLEA)111(Y)55(:)55( )-55(a)55( )-55(modern library supporting SSL2,)]TJ
0 -1 TD
(SSL3, and TLS)Tj
0 -2 TD
(OpenSSL... the same thing but maintained)Tj
T*
(Commonly used to implement the "https" service)Tj
T*
(But also can be used for other things; our IPSEC IKE)Tj
0 -1 TD
(daemon will link against it in the next release.)Tj
0 -2 TD
(The library implements the unpatented and free DSA)Tj
0 -1 TD
[(algorithm, but SSLEA)111(Y)-250(also does RSA -- which)]TJ
T*
(prevents us from entering the USA market...)Tj
0 -2 TD
(So we use a shared library trick to avoid the RSA)Tj
0 -1 TD
(issue.)Tj
ET
0 G
1 J 1 j 0.012 w 10 M []0 d
1 i
108.03 72.03 m
504.03 72.03 l
504.001 72.012 m
523.873 72.012 540.001 88.14 540.001 108.012 c
540.03 108.03 m
540.03 318.03 l
540.03 474.03 m
540.03 633.27 l
540.001 684.012 m
540.001 703.884 523.873 720.012 504.001 720.012 c
504.03 720.03 m
108.03 720.03 l
108.001 720.012 m
88.129 720.012 72.001 703.884 72.001 684.012 c
72.03 684.03 m
72.03 108.03 l
72.001 108.012 m
72.001 88.14 88.129 72.012 108.001 72.012 c
S
BT
/TT4 1 Tf
0 9 -9 0 543.001 320.211 Tm
-0.0001 Tc
0.0001 Tw
[(Cryptography)-250.1(i)-0.1(n)-250.1(OpenBSD: An Ov)14.9(ervie)24.9(w)-18190.1(Jun 10, 1999)]TJ
/TT6 1 Tf
0 14 -14 0 588 704.4 Tm
0 Tc
0 Tw
(Page 10)Tj
ET
endstream
endobj
36 0 obj
<<
/ProcSet [/PDF /Text ]
/Font <<
/TT2 4 0 R
/TT4 5 0 R
/TT6 6 0 R
>>
/ExtGState <<
/GS1 7 0 R
>>
>>
endobj
38 0 obj
<<
/Length 1348
>>
stream
BT
/TT2 1 Tf
0 23 -23 0 95 362.144 Tm
0 g
/GS1 gs
0 Tc
0 Tw
(IPSEC)Tj
-11.0497 -2 TD
(Network layer security mechanism which can be used)Tj
0 -1 TD
(in a variety of ways, ie. end-to-end, VPNs, etc.)Tj
0 -2 TD
(Still being worked on at IETF: we are following all)Tj
0 -1 TD
(developments, and sometimes leading)Tj
0 -2 TD
[(W)74(e)74( )-74(have: tunnel and transport mode, easy VPNs,)]TJ
0 -1 TD
(photuris and isakmpd \(IKE\), all standard)Tj
T*
(cryptographic algorithms, and more)Tj
0 -2 TD
(Security policy mechanisms being worked on)Tj
T*
[(IPSEC matches our security goals very closely)92(,)-250(s)0(o)-250(our)]TJ
0 -1 TD
(developers spend a lot of time on this area)Tj
ET
0 G
1 J 1 j 0.012 w 10 M []0 d
1 i
108.03 72.03 m
504.03 72.03 l
504.001 72.012 m
523.873 72.012 540.001 88.14 540.001 108.012 c
540.03 108.03 m
540.03 318.03 l
540.03 474.03 m
540.03 633.27 l
540.001 684.012 m
540.001 703.884 523.873 720.012 504.001 720.012 c
504.03 720.03 m
108.03 720.03 l
108.001 720.012 m
88.129 720.012 72.001 703.884 72.001 684.012 c
72.03 684.03 m
72.03 108.03 l
72.001 108.012 m
72.001 88.14 88.129 72.012 108.001 72.012 c
S
BT
/TT4 1 Tf
0 9 -9 0 543.001 320.211 Tm
-0.0001 Tc
0.0001 Tw
[(Cryptography)-250.1(i)-0.1(n)-250.1(OpenBSD: An Ov)14.9(ervie)24.9(w)-18190.1(Jun 10, 1999)]TJ
/TT6 1 Tf
0 14 -14 0 588 704.4 Tm
0 Tc
0 Tw
(Page 11)Tj
ET
endstream
endobj
39 0 obj
<<
/ProcSet [/PDF /Text ]
/Font <<
/TT2 4 0 R
/TT4 5 0 R
/TT6 6 0 R
>>
/ExtGState <<
/GS1 7 0 R
>>
>>
endobj
43 0 obj
<<
/Length 1220
>>
stream
BT
/TT2 1 Tf
0 23 -23 0 95 331.784 Tm
0 g
/GS1 gs
0 Tc
0 Tw
(Kerberos IV)Tj
-9.7297 -2 TD
(Primarily uses DES)Tj
T*
(K4 instead of K5... ours is from Sweden, but K5 is only)Tj
0 -1 TD
(from USA)Tj
0 -2 TD
[(A)-250(K)0(5)-250(clone is under development in Sweden.. but not)]TJ
0 -1 TD
(ready yet)Tj
0 -2 TD
(Besides speci)Tj
/TT7 1 Tf
6.0801 0 TD
(Þ)Tj
/TT2 1 Tf
0.6108 0 TD
(c Kerberos tools, the following utilities)Tj
-6.6909 -1 TD
(use Kerberos)Tj
1 -2 TD
(login, xdm, su, rlogin[d], rsh[d], telnet[d], kx,)Tj
0 -1 TD
(cvs, sudo, xlock, ...)Tj
ET
0 G
1 J 1 j 0.012 w 10 M []0 d
1 i
108.03 72.03 m
504.03 72.03 l
504.001 72.012 m
523.873 72.012 540.001 88.14 540.001 108.012 c
540.03 108.03 m
540.03 318.03 l
540.03 474.03 m
540.03 633.27 l
540.001 684.012 m
540.001 703.884 523.873 720.012 504.001 720.012 c
504.03 720.03 m
108.03 720.03 l
108.001 720.012 m
88.129 720.012 72.001 703.884 72.001 684.012 c
72.03 684.03 m
72.03 108.03 l
72.001 108.012 m
72.001 88.14 88.129 72.012 108.001 72.012 c
S
BT
/TT4 1 Tf
0 9 -9 0 543.001 320.211 Tm
-0.0001 Tc
0.0001 Tw
[(Cryptography)-250.1(i)-0.1(n)-250.1(OpenBSD: An Ov)14.9(ervie)24.9(w)-18190.1(Jun 10, 1999)]TJ
/TT6 1 Tf
0 14 -14 0 588 704.4 Tm
0 Tc
0 Tw
(Page 12)Tj
ET
endstream
endobj
44 0 obj
<<
/ProcSet [/PDF /Text ]
/Font <<
/TT2 4 0 R
/TT4 5 0 R
/TT6 6 0 R
/TT7 12 0 R
>>
/ExtGState <<
/GS1 7 0 R
>>
>>
endobj
46 0 obj
<<
/Length 1085
>>
stream
BT
/TT2 1 Tf
0 23 -23 0 95 364.478 Tm
0 g
/GS1 gs
0 Tc
0 Tw
(S/Key)Tj
-11.1512 -2 TD
(Our S/Key has been improved to match the)Tj
0 -1 TD
(functionality of "opie")Tj
0 -2 TD
(Uses MD4, MD5, SHA1, or RIPEMD-160 hashes)Tj
T*
(RFC1938 compliant)Tj
T*
(S/Key is useful when other cryptographic mechanisms)Tj
0 -1 TD
(are not trusted or available \(but... session snooping)Tj
T*
(and hijacking are still threats\))Tj
ET
0 G
1 J 1 j 0.012 w 10 M []0 d
1 i
108.03 72.03 m
504.03 72.03 l
504.001 72.012 m
523.873 72.012 540.001 88.14 540.001 108.012 c
540.03 108.03 m
540.03 318.03 l
540.03 474.03 m
540.03 633.27 l
540.001 684.012 m
540.001 703.884 523.873 720.012 504.001 720.012 c
504.03 720.03 m
108.03 720.03 l
108.001 720.012 m
88.129 720.012 72.001 703.884 72.001 684.012 c
72.03 684.03 m
72.03 108.03 l
72.001 108.012 m
72.001 88.14 88.129 72.012 108.001 72.012 c
S
BT
/TT4 1 Tf
0 9 -9 0 543.001 320.211 Tm
-0.0001 Tc
0.0001 Tw
[(Cryptography)-250.1(i)-0.1(n)-250.1(OpenBSD: An Ov)14.9(ervie)24.9(w)-18190.1(Jun 10, 1999)]TJ
/TT6 1 Tf
0 14 -14 0 588 704.4 Tm
0 Tc
0 Tw
(Page 13)Tj
ET
endstream
endobj
47 0 obj
<<
/ProcSet [/PDF /Text ]
/Font <<
/TT2 4 0 R
/TT4 5 0 R
/TT6 6 0 R
>>
/ExtGState <<
/GS1 7 0 R
>>
>>
endobj
49 0 obj
<<
/Length 1255
>>
stream
BT
/TT2 1 Tf
0 23 -23 0 95 328.288 Tm
0 g
/GS1 gs
0 Tc
0 Tw
(Randomness)Tj
-9.5777 -2 TD
(For proper operation, our system often needs random)Tj
0 -1 TD
(numbers of various characteristics and strengths)Tj
0 -2 TD
(Kernel collects interrupt information and sustains an)Tj
0 -1 TD
(entropy pool, to provide data to)Tj
0 -2 TD
(seed cryptographic functions,)Tj
0 -1 TD
(provide numbers for use as transaction ids,)Tj
T*
(use for whatever purpose the kernel or userland may)Tj
T*
(want.)Tj
0 -2 TD
[(A)-250(number of useful interfaces are described in the)]TJ
0 -1 TD
[(paper)55(.)]TJ
ET
0 G
1 J 1 j 0.012 w 10 M []0 d
1 i
108.03 72.03 m
504.03 72.03 l
504.001 72.012 m
523.873 72.012 540.001 88.14 540.001 108.012 c
540.03 108.03 m
540.03 318.03 l
540.03 474.03 m
540.03 633.27 l
540.001 684.012 m
540.001 703.884 523.873 720.012 504.001 720.012 c
504.03 720.03 m
108.03 720.03 l
108.001 720.012 m
88.129 720.012 72.001 703.884 72.001 684.012 c
72.03 684.03 m
72.03 108.03 l
72.001 108.012 m
72.001 88.14 88.129 72.012 108.001 72.012 c
S
BT
/TT4 1 Tf
0 9 -9 0 543.001 320.211 Tm
-0.0001 Tc
0.0001 Tw
[(Cryptography)-250.1(i)-0.1(n)-250.1(OpenBSD: An Ov)14.9(ervie)24.9(w)-18190.1(Jun 10, 1999)]TJ
/TT6 1 Tf
0 14 -14 0 588 704.4 Tm
0 Tc
0 Tw
(Page 14)Tj
ET
endstream
endobj
50 0 obj
<<
/ProcSet [/PDF /Text ]
/Font <<
/TT2 4 0 R
/TT4 5 0 R
/TT6 6 0 R
>>
/ExtGState <<
/GS1 7 0 R
>>
>>
endobj
52 0 obj
<<
/Length 1312
>>
stream
BT
/TT2 1 Tf
0 23 -23 0 95 244.924 Tm
0 g
/GS1 gs
0 Tc
0 Tw
(Non-Repeating Randomness)Tj
-5.9532 -2 TD
[(W)74(e)74( )-74(needed to make DNS packet id’)55(s)-250(more random,)]TJ
0 -1 TD
(due to a trivial spoo)Tj
/TT7 1 Tf
9.0552 0 TD
(Þ)Tj
/TT2 1 Tf
0.6108 0 TD
(ng attack \(1, 2, 3 .. is bad\))Tj
-9.666 -2 TD
(16 bit space: 15 bits are non-repeating random, high bit)Tj
0 -1 TD
(toggles when 15 bits are exhausted and re-seeded)Tj
0 -2 TD
(Makes DNS packets signi)Tj
/TT7 1 Tf
11.8008 0 TD
(Þ)Tj
/TT2 1 Tf
0.6108 0 TD
(cantly harded to spoof)Tj
-12.4116 -2 TD
(Same idea used to make IP ip_id stronger and harder)Tj
0 -1 TD
(to spoof)Tj
ET
0 G
1 J 1 j 0.012 w 10 M []0 d
1 i
108.03 72.03 m
504.03 72.03 l
504.001 72.012 m
523.873 72.012 540.001 88.14 540.001 108.012 c
540.03 108.03 m
540.03 318.03 l
540.03 474.03 m
540.03 633.27 l
540.001 684.012 m
540.001 703.884 523.873 720.012 504.001 720.012 c
504.03 720.03 m
108.03 720.03 l
108.001 720.012 m
88.129 720.012 72.001 703.884 72.001 684.012 c
72.03 684.03 m
72.03 108.03 l
72.001 108.012 m
72.001 88.14 88.129 72.012 108.001 72.012 c
S
BT
/TT4 1 Tf
0 9 -9 0 543.001 320.211 Tm
-0.0001 Tc
0.0001 Tw
[(Cryptography)-250.1(i)-0.1(n)-250.1(OpenBSD: An Ov)14.9(ervie)24.9(w)-18190.1(Jun 10, 1999)]TJ
/TT6 1 Tf
0 14 -14 0 588 704.4 Tm
0 Tc
0 Tw
(Page 15)Tj
ET
endstream
endobj
53 0 obj
<<
/ProcSet [/PDF /Text ]
/Font <<
/TT2 4 0 R
/TT4 5 0 R
/TT6 6 0 R
/TT7 12 0 R
>>
/ExtGState <<
/GS1 7 0 R
>>
>>
endobj
55 0 obj
<<
/Length 1117
>>
stream
BT
/TT2 1 Tf
0 23 -23 0 95 188.057 Tm
0 g
/GS1 gs
0 Tc
0 Tw
(More random places to use randomness)Tj
-3.4807 -2 TD
(Port numbers in the bind\(2\) system call)Tj
T*
[(Process ID’)55(s)]TJ
T*
[(RPC and NFS RPC XID’)55(s)]TJ
T*
(TCP ISS value)Tj
T*
(Inode generation numbers \(stronger )Tj
/TT7 1 Tf
16.7222 0 TD
(Þ)Tj
/TT2 1 Tf
0.6108 0 TD
(lehandles\))Tj
-17.333 -2 TD
(For stronger random names in mktemp\(3\))Tj
T*
(And a whole lot more...)Tj
ET
0 G
1 J 1 j 0.012 w 10 M []0 d
1 i
108.03 72.03 m
504.03 72.03 l
504.001 72.012 m
523.873 72.012 540.001 88.14 540.001 108.012 c
540.03 108.03 m
540.03 318.03 l
540.03 474.03 m
540.03 633.27 l
540.001 684.012 m
540.001 703.884 523.873 720.012 504.001 720.012 c
504.03 720.03 m
108.03 720.03 l
108.001 720.012 m
88.129 720.012 72.001 703.884 72.001 684.012 c
72.03 684.03 m
72.03 108.03 l
72.001 108.012 m
72.001 88.14 88.129 72.012 108.001 72.012 c
S
BT
/TT4 1 Tf
0 9 -9 0 543.001 320.211 Tm
-0.0001 Tc
0.0001 Tw
[(Cryptography)-250.1(i)-0.1(n)-250.1(OpenBSD: An Ov)14.9(ervie)24.9(w)-18190.1(Jun 10, 1999)]TJ
/TT6 1 Tf
0 14 -14 0 588 704.4 Tm
0 Tc
0 Tw
(Page 16)Tj
ET
endstream
endobj
56 0 obj
<<
/ProcSet [/PDF /Text ]
/Font <<
/TT2 4 0 R
/TT4 5 0 R
/TT6 6 0 R
/TT7 12 0 R
>>
/ExtGState <<
/GS1 7 0 R
>>
>>
endobj
58 0 obj
<<
/Length 1242
>>
stream
BT
/TT2 1 Tf
0 23 -23 0 95 318.375 Tm
0 g
/GS1 gs
0 Tc
0 Tw
(Secure Storage)Tj
-9.1467 -2 TD
[(W)74(e)74( )-74(do)-250(not have a crypto )]TJ
/TT7 1 Tf
11.1491 0 TD
(Þ)Tj
/TT2 1 Tf
0.6108 0 TD
(lesystem.)Tj
-11.76 -2 TD
(CFS works, but that is not an ideal solution.)Tj
T*
(Developers are looking into it, but a quality encrypted)Tj
/TT7 1 Tf
0 -1 TD
(Þ)Tj
/TT2 1 Tf
0.6108 0 TD
(lesystem is not as easy as simply encrypting the data)Tj
-0.6108 -1 TD
(\(ie. issues regarding meta data, directories, fsck, etc\))Tj
0 -2 TD
[(Secure logging ef)18(forts also underway)]TJ
ET
0 G
1 J 1 j 0.012 w 10 M []0 d
1 i
108.03 72.03 m
504.03 72.03 l
504.001 72.012 m
523.873 72.012 540.001 88.14 540.001 108.012 c
540.03 108.03 m
540.03 318.03 l
540.03 474.03 m
540.03 633.27 l
540.001 684.012 m
540.001 703.884 523.873 720.012 504.001 720.012 c
504.03 720.03 m
108.03 720.03 l
108.001 720.012 m
88.129 720.012 72.001 703.884 72.001 684.012 c
72.03 684.03 m
72.03 108.03 l
72.001 108.012 m
72.001 88.14 88.129 72.012 108.001 72.012 c
S
BT
/TT4 1 Tf
0 9 -9 0 543.001 320.211 Tm
-0.0001 Tc
0.0001 Tw
[(Cryptography)-250.1(i)-0.1(n)-250.1(OpenBSD: An Ov)14.9(ervie)24.9(w)-18190.1(Jun 10, 1999)]TJ
/TT6 1 Tf
0 14 -14 0 588 704.4 Tm
0 Tc
0 Tw
(Page 17)Tj
ET
endstream
endobj
59 0 obj
<<
/ProcSet [/PDF /Text ]
/Font <<
/TT2 4 0 R
/TT4 5 0 R
/TT6 6 0 R
/TT7 12 0 R
>>
/ExtGState <<
/GS1 7 0 R
>>
>>
endobj
61 0 obj
<<
/Length 921
>>
stream
BT
/TT2 1 Tf
0 23 -23 0 95 380.144 Tm
0 g
/GS1 gs
0 Tc
0 Tw
(bcrypt)Tj
-11.8323 -2 TD
(The unix password system is hopelessly antiquated.)Tj
T*
(This problem was attacked by Niels Provos, who will)Tj
0 -1 TD
(describe his work in the next talk.)Tj
ET
0 G
1 J 1 j 0.012 w 10 M []0 d
1 i
108.03 72.03 m
504.03 72.03 l
504.001 72.012 m
523.873 72.012 540.001 88.14 540.001 108.012 c
540.03 108.03 m
540.03 318.03 l
540.03 474.03 m
540.03 633.27 l
540.001 684.012 m
540.001 703.884 523.873 720.012 504.001 720.012 c
504.03 720.03 m
108.03 720.03 l
108.001 720.012 m
88.129 720.012 72.001 703.884 72.001 684.012 c
72.03 684.03 m
72.03 108.03 l
72.001 108.012 m
72.001 88.14 88.129 72.012 108.001 72.012 c
S
BT
/TT4 1 Tf
0 9 -9 0 543.001 320.211 Tm
-0.0001 Tc
0.0001 Tw
[(Cryptography)-250.1(i)-0.1(n)-250.1(OpenBSD: An Ov)14.9(ervie)24.9(w)-18190.1(Jun 10, 1999)]TJ
/TT6 1 Tf
0 14 -14 0 588 704.4 Tm
0 Tc
0 Tw
(Page 18)Tj
ET
endstream
endobj
62 0 obj
<<
/ProcSet [/PDF /Text ]
/Font <<
/TT2 4 0 R
/TT4 5 0 R
/TT6 6 0 R
>>
/ExtGState <<
/GS1 7 0 R
>>
>>
endobj
64 0 obj
<<
/Length 1156
>>
stream
BT
/TT2 1 Tf
0 23 -23 0 95 330.852 Tm
0 g
/GS1 gs
0 Tc
0 Tw
(Conclusions)Tj
-9.6892 -2 TD
(If you expect to see a particular piece of cryptographic)Tj
0 -1 TD
(software in an operating system, look here )Tj
/TT7 1 Tf
19.6103 0 TD
(Þ)Tj
/TT2 1 Tf
0.6108 0 TD
(rst.)Tj
-20.2212 -2 TD
[(Our cryptography ef)18(forts stress integration, not add-)]TJ
0 -1 TD
(ons.)Tj
0 -2 TD
(If you are a non-USA cryptographer who believes in)Tj
0 -1 TD
(integrated crypto, we want to hear from you.)Tj
ET
0 G
1 J 1 j 0.012 w 10 M []0 d
1 i
108.03 72.03 m
504.03 72.03 l
504.001 72.012 m
523.873 72.012 540.001 88.14 540.001 108.012 c
540.03 108.03 m
540.03 318.03 l
540.03 474.03 m
540.03 633.27 l
540.001 684.012 m
540.001 703.884 523.873 720.012 504.001 720.012 c
504.03 720.03 m
108.03 720.03 l
108.001 720.012 m
88.129 720.012 72.001 703.884 72.001 684.012 c
72.03 684.03 m
72.03 108.03 l
72.001 108.012 m
72.001 88.14 88.129 72.012 108.001 72.012 c
S
BT
/TT4 1 Tf
0 9 -9 0 543.001 320.211 Tm
-0.0001 Tc
0.0001 Tw
[(Cryptography)-250.1(i)-0.1(n)-250.1(OpenBSD: An Ov)14.9(ervie)24.9(w)-18190.1(Jun 10, 1999)]TJ
/TT6 1 Tf
0 14 -14 0 588 704.4 Tm
0 Tc
0 Tw
(Page 19)Tj
ET
endstream
endobj
65 0 obj
<<
/ProcSet [/PDF /Text ]
/Font <<
/TT2 4 0 R
/TT4 5 0 R
/TT6 6 0 R
/TT7 12 0 R
>>
/ExtGState <<
/GS1 7 0 R
>>
>>
endobj
7 0 obj
<<
/Type /ExtGState
/SA false
/SM 0.02
/OP false
/op false
/OPM 1
/BG2 /Default
/UCR2 /Default
/HT /Default
/TR2 /Default
>>
endobj
66 0 obj
<<
/Type /FontDescriptor
/Ascent 822
/CapHeight 681
/Descent -277
/Flags 262178
/FontBBox [-152 -266 1000 924]
/FontName /Palatino-Bold
/ItalicAngle 0
/StemV 133
/XHeight 471
/StemH 122
>>
endobj
67 0 obj
<<
/Type /FontDescriptor
/Ascent 750
/CapHeight 662
/Descent -250
/Flags 34
/FontBBox [-168 -218 1000 898]
/FontName /Times-Roman
/ItalicAngle 0
/StemV 84
/XHeight 450
/StemH 84
>>
endobj
68 0 obj
<<
/Type /FontDescriptor
/Ascent 753
/CapHeight 562
/Descent -246
/Flags 35
/FontBBox [-28 -250 628 805]
/FontName /Courier
/ItalicAngle 0
/StemV 51
/XHeight 426
/StemH 51
>>
endobj
69 0 obj
<<
/Type /FontDescriptor
/Ascent 822
/CapHeight 681
/Descent -277
/Flags 262178
/FontBBox [-152 -266 1000 924]
/FontName /Palatino-Bold
/ItalicAngle 0
/StemV 133
/XHeight 471
/StemH 122
>>
endobj
4 0 obj
<<
/Type /Font
/Subtype /TrueType
/FirstChar 32
/LastChar 149
/Widths [250 278 402 0 0 0 0 0 333 333 0 0 250 333 250 296
500 500 500 500 500 500 500 0 500 500 250 250 0 0 0 444
747 778 667 722 833 611 556 833 833 389 0 778 611 1000 833 833
611 833 722 611 667 778 778 1000 667 667 0 333 0 333 0 500
0 500 611 444 611 500 389 556 611 333 333 611 333 889 611 556
611 611 389 444 333 611 556 833 500 556 0 310 0 310 0 0
0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0
0 0 278 0 0 606 ]
/Encoding /WinAnsiEncoding
/BaseFont /Palatino-Bold
/FontDescriptor 66 0 R
>>
endobj
5 0 obj
<<
/Type /Font
/Subtype /TrueType
/FirstChar 32
/LastChar 121
/Widths [250 0 0 0 0 0 0 0 0 0 0 0 250 0 0 0
500 500 0 0 0 0 0 0 0 500 278 0 0 0 0 0
0 722 667 667 722 0 0 0 0 0 389 0 0 0 0 722
0 0 0 556 0 0 0 0 0 0 0 0 0 0 0 0
0 444 0 0 0 444 0 500 500 278 0 0 0 0 500 500
500 0 333 0 278 500 500 722 0 500 ]
/Encoding /WinAnsiEncoding
/BaseFont /Times-Roman
/FontDescriptor 67 0 R
>>
endobj
6 0 obj
<<
/Type /Font
/Subtype /TrueType
/FirstChar 32
/LastChar 103
/Widths [600 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0
600 600 600 600 600 600 600 600 600 600 0 0 0 0 0 0
0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0
600 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0
0 600 0 0 0 600 0 600 ]
/Encoding /WinAnsiEncoding
/BaseFont /Courier
/FontDescriptor 68 0 R
>>
endobj
12 0 obj
<<
/Type /Font
/Subtype /TrueType
/FirstChar 222
/LastChar 222
/Widths [611 ]
/Encoding /MacRomanEncoding
/BaseFont /Palatino-Bold
/FontDescriptor 69 0 R
>>
endobj
1 0 obj
<<
/Type /Page
/Parent 8 0 R
/Resources 3 0 R
/Contents 2 0 R
>>
endobj
9 0 obj
<<
/Type /Page
/Parent 8 0 R
/Resources 11 0 R
/Contents 10 0 R
>>
endobj
13 0 obj
<<
/Type /Page
/Parent 8 0 R
/Resources 15 0 R
/Contents 14 0 R
>>
endobj
16 0 obj
<<
/Type /Page
/Parent 8 0 R
/Resources 18 0 R
/Contents 17 0 R
>>
endobj
19 0 obj
<<
/Type /Page
/Parent 8 0 R
/Resources 21 0 R
/Contents 20 0 R
>>
endobj
22 0 obj
<<
/Type /Page
/Parent 8 0 R
/Resources 24 0 R
/Contents 23 0 R
>>
endobj
25 0 obj
<<
/Type /Page
/Parent 8 0 R
/Resources 27 0 R
/Contents 26 0 R
>>
endobj
28 0 obj
<<
/Type /Page
/Parent 8 0 R
/Resources 30 0 R
/Contents 29 0 R
>>
endobj
31 0 obj
<<
/Type /Page
/Parent 8 0 R
/Resources 33 0 R
/Contents 32 0 R
>>
endobj
34 0 obj
<<
/Type /Page
/Parent 8 0 R
/Resources 36 0 R
/Contents 35 0 R
>>
endobj
37 0 obj
<<
/Type /Page
/Parent 41 0 R
/Resources 39 0 R
/Contents 38 0 R
>>
endobj
42 0 obj
<<
/Type /Page
/Parent 41 0 R
/Resources 44 0 R
/Contents 43 0 R
>>
endobj
45 0 obj
<<
/Type /Page
/Parent 41 0 R
/Resources 47 0 R
/Contents 46 0 R
>>
endobj
48 0 obj
<<
/Type /Page
/Parent 41 0 R
/Resources 50 0 R
/Contents 49 0 R
>>
endobj
51 0 obj
<<
/Type /Page
/Parent 41 0 R
/Resources 53 0 R
/Contents 52 0 R
>>
endobj
54 0 obj
<<
/Type /Page
/Parent 41 0 R
/Resources 56 0 R
/Contents 55 0 R
>>
endobj
57 0 obj
<<
/Type /Page
/Parent 41 0 R
/Resources 59 0 R
/Contents 58 0 R
>>
endobj
60 0 obj
<<
/Type /Page
/Parent 41 0 R
/Resources 62 0 R
/Contents 61 0 R
>>
endobj
63 0 obj
<<
/Type /Page
/Parent 41 0 R
/Resources 65 0 R
/Contents 64 0 R
>>
endobj
70 0 obj
<<
/S /D
>>
endobj
71 0 obj
<<
/Nums [0 70 0 R ]
>>
endobj
8 0 obj
<<
/Type /Pages
/Kids [1 0 R 9 0 R 13 0 R 16 0 R 19 0 R 22 0 R 25 0 R 28 0 R 31 0 R 34 0 R]
/Count 10
/Parent 40 0 R
>>
endobj
41 0 obj
<<
/Type /Pages
/Kids [37 0 R 42 0 R 45 0 R 48 0 R 51 0 R 54 0 R 57 0 R 60 0 R 63 0 R]
/Count 9
/Parent 40 0 R
>>
endobj
40 0 obj
<<
/Type /Pages
/Kids [8 0 R 41 0 R ]
/Count 19
/Rotate 90
/MediaBox [0 0 612 792]
>>
endobj
72 0 obj
<<
/CreationDate (D:20040906232058-05'00')
/ModDate (D:20040906232058-05'00')
/Producer (PSNormalizer.framework)
>>
endobj
73 0 obj
<<
/Type /Catalog
/Pages 40 0 R
/PageLabels 71 0 R
>>
endobj
xref
0 74
0000000000 65535 f
0000028408 00000 n
0000000016 00000 n
0000001074 00000 n
0000026927 00000 n
0000027494 00000 n
0000027897 00000 n
0000025989 00000 n
0000030058 00000 n
0000028488 00000 n
0000001191 00000 n
0000002641 00000 n
0000028235 00000 n
0000028570 00000 n
0000002771 00000 n
0000004047 00000 n
0000028653 00000 n
0000004165 00000 n
0000005597 00000 n
0000028736 00000 n
0000005715 00000 n
0000006659 00000 n
0000028819 00000 n
0000006777 00000 n
0000007901 00000 n
0000028902 00000 n
0000008019 00000 n
0000009343 00000 n
0000028985 00000 n
0000009473 00000 n
0000010684 00000 n
0000029068 00000 n
0000010814 00000 n
0000012053 00000 n
0000029151 00000 n
0000012171 00000 n
0000013617 00000 n
0000029234 00000 n
0000013735 00000 n
0000015136 00000 n
0000030323 00000 n
0000030193 00000 n
0000029318 00000 n
0000015254 00000 n
0000016527 00000 n
0000029402 00000 n
0000016657 00000 n
0000017795 00000 n
0000029486 00000 n
0000017913 00000 n
0000019221 00000 n
0000029570 00000 n
0000019339 00000 n
0000020704 00000 n
0000029654 00000 n
0000020834 00000 n
0000022004 00000 n
0000029738 00000 n
0000022134 00000 n
0000023429 00000 n
0000029822 00000 n
0000023559 00000 n
0000024532 00000 n
0000029906 00000 n
0000024650 00000 n
0000025859 00000 n
0000026129 00000 n
0000026334 00000 n
0000026531 00000 n
0000026722 00000 n
0000029990 00000 n
0000030018 00000 n
0000030425 00000 n
0000030557 00000 n
trailer
<<
/Size 74
/Root 73 0 R
/Info 72 0 R
/ID [<5029d473abc363f9343f38f12db512a5><5029d473abc363f9343f38f12db512a5>]
>>
startxref
30627
%%EOF
![[BACK]](/icons/back.gif){kind=icon}
Return to crypt-slides.pdf CVS log ![[TXT]](/icons/text.gif){kind=icon}
![[DIR]](/icons/dir.gif){kind=icon}
Up to [local] / www / papers