this post was submitted on 10 Aug 2023
1075 points (98.4% liked)
Technology
58303 readers
23 users here now
This is a most excellent place for technology news and articles.
Our Rules
- Follow the lemmy.world rules.
- Only tech related content.
- Be excellent to each another!
- Mod approved content bots can post up to 10 articles per day.
- Threads asking for personal tech support may be deleted.
- Politics threads may be removed.
- No memes allowed as posts, OK to post as comments.
- Only approved bots from the list below, to ask if your bot can be added please contact us.
- Check for duplicates before posting, duplicates may be removed
Approved Bots
founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
Hmm. I guess most encrypted protocols aside from SSH use X.509 certs, so they wouldn't make for great wrapper protocols, can be man-in-the-middle attacked. So if they're willing to block SSH and MITM the others, I guess that puts them in a decent place, at least insofar as encrypted connections.
Another option, if one controls both ends and can set things up, is steganography.
One could use non-encrypted data, but where it's difficult or expensive to pick out the data being used to transfer the hidden data in all the rest.
Like, say I have an enencrypted audio stream, 16-bit samples. In the low-order bit of each sample, I can tuck data. Maybe statistical analysis could pick it up, but that's probably not going to be trivial, and maybe you could MITM and degrade everyone's audio, but that's gonna be disruptive.
I mean, probably every online video game can act as a channel for that.
Just need a convenient way to roll out new steganography channels.
The challenge is that hiding data in other data means that there's gonna be overhead, because you gotta also send the other data. So it's probably not bandwidth-efficient, and may impact performance.