|
Trance (OP)
|
 |
November 19, 2013, 08:25:33 AM |
|
|
Some people are so poor ALL they have is money
|
|
|
|
Barek
|
 |
November 19, 2013, 08:54:59 AM |
|
Rumor has it properly disinfecting the usb port helps prevent spread!
Jokes aside, there is a difference to what is theoretically could be possible, and what really is.
|
|
|
|
|
DeathAndTaxes
Donator
Legendary
 Offline
Activity: 1218
Merit: 1079
Gerald Davis
|
|
November 19, 2013, 08:59:51 AM |
|
I have always thought using webcam and qr codes an ultra-paranoid way of airgapping.
QR codes have a pretty limited capacity but I have been experimenting with animated QR codes (like a flipbook of codes) for passing larger amounts of data.
|
|
|
|
|
|
Barek
|
|
November 19, 2013, 09:04:09 AM |
|
I have always thought using webcam and qr codes an ultra-paranoid way of airgapping.
QR codes have a pretty limited capacity but I have been experimenting with animated QR codes (like a flipbook of codes) for passing larger amounts of data.
You mean for offline transactions (e.g. Armory)? While it would be a nice feature, it feels more like security by obscurity. Nothing prevents an adversary to manipulate the sent QR codes, if the online computer is compromised. |
|
|
|
|
freedomno1
Legendary
Offline
Activity: 1806
Merit: 1090
Learning the troll avoidance button :)
|
|
November 19, 2013, 09:05:58 AM |
|
Wow BIOS NO ONE Edit Brilliant  But seems almost April fools like on Halloween XD Then again if it is real this is interesting no known defense but computer silence |
Believing in Bitcoins and it's ability to change the world
|
|
|
DeathAndTaxes
Donator
Legendary
Offline
Activity: 1218
Merit: 1079
Gerald Davis
|
|
November 19, 2013, 09:06:14 AM |
|
I have always thought using webcam and qr codes an ultra-paranoid way of airgapping.
QR codes have a pretty limited capacity but I have been experimenting with animated QR codes (like a flipbook of codes) for passing larger amounts of data.
You mean for offline transactions (e.g. Armory)? While it would be a nice feature, it feels more like security by obscurity. Nothing prevents an adversary to manipulate the sent QR codes, if the online computer is compromised. The offline computer wouldn't trust the online computer. The online computer is simply used for blockchain data and to broadcast the offline signed transaction. |
|
|
|
|
CIYAM
Legendary
Offline
Activity: 1890
Merit: 1078
Ian Knowles - CIYAM Lead Developer
|
|
November 19, 2013, 09:07:21 AM |
|
The offline computer wouldn't trust the online computer. The online computer is simply used for blockchain data and to broadcast the offline signed transaction.
Exactly - I use QR codes for the CIYAM Safe and it does feel a lot safer to be completely "air-gapped". |
|
|
|
Elwar
Legendary
Offline
Activity: 3598
Merit: 2386
Viva Ut Vivas
|
|
November 19, 2013, 09:16:27 AM |
|
USBs carrying viruses has been known.
Burn CDs from offline wallets to move private keys for spending.
|
First seastead company actually selling sea homes: Ocean Builders https://ocean.builders Of course we accept bitcoin. |
|
|
CIYAM
Legendary
Offline
Activity: 1890
Merit: 1078
Ian Knowles - CIYAM Lead Developer
|
|
November 19, 2013, 09:23:33 AM |
|
QR codes have a pretty limited capacity but I have been experimenting with animated QR codes (like a flipbook of codes) for passing larger amounts of data.
I use an old e-book that has a built in "slideshow" function for all the photos in a directory - currently am only using it with my offline computer (to move new addresses to the online computer) but am thinking of buying another one for the online computer (as they are dirt cheap devices). |
|
|
|
|
Barek
|
|
November 19, 2013, 09:23:58 AM |
|
Well, the argument is that somehow the USB or sound card can be manipulated for code injection.
If that argument is allowed, then why should it not be possible through the camera. An adversary generates a "magic" QR code (same as the magic audio or USB hijack), which causes the camera to create some sort of malicious code that causes the offline computer to be infected.
All of them are a far stretch, which is the point I was trying to make.
|
|
|
|
|
CIYAM
Legendary
Offline
Activity: 1890
Merit: 1078
Ian Knowles - CIYAM Lead Developer
|
|
November 19, 2013, 09:31:32 AM |
|
If that argument is allowed, then why should it not be possible through the camera. An adversary generates a "magic" QR code (same as the magic audio or USB hijack), which causes the camera to create some sort of malicious code that causes the offline computer to be infected.
All of them are a far stretch, which is the point I was trying to make.
There is no "code" transmitted via QR - just an unsigned raw tx (which you can check before signing). So it is not a question of malicious code - there is *no code* at all. |
|
|
|
|
Barek
|
|
November 19, 2013, 09:34:29 AM |
|
Quick Response code. The data you transmit is encoded in a picture.
|
|
|
|
|
|
PenAndPaper
|
|
November 19, 2013, 09:36:13 AM |
|
The guy in this article describes an alien computer virus. Cyberpunk x-files. Actually describes a virus that managed to do a lot more than what mit scientists are struggling with in research. Seriously?  |
|
|
|
|
|
AnonyMint
|
|
November 19, 2013, 09:37:37 AM |
|
Printout and then OCR scan to cross airgap?
|
|
|
|
|
Tesla71
|
|
November 19, 2013, 09:38:59 AM |
|
|
|
|
|
|
|
