Scratch

Why do encryption in Scratch at all? For example, for chat.py, couldn't you just have your Python mirror make a secure connection to the server? That would seem to make a lot more sense practically; it'd be faster and probably more secure, too. 

(Just ruining your fun here...  )

Last edited by blob8108 (2012-04-20 03:32:15)

bobbybee wrote:

blob8108 wrote:

Why do encryption in Scratch at all? For example, for chat.py, couldn't you just have your Python mirror make a secure connection to the server? That would seem to make a lot more sense practically; it'd be faster and probably more secure, too. 

(Just ruining your fun here...  )

We could, but now Scratch Space (and soon FireMMO) supports direct-mesh. So there isn't much security.

Yeah, what you said.

It's easier to directly connect to Scratch Space with Mesh than to open Scratch, enable remote connections, open the Python program which then connects to Scratch and the server. Besides, just encrypting the passwords sent might be better than encrypting everything sent. Who knows. 

blob8108 wrote:

Magnie wrote:

It's easier to directly connect to Scratch Space with Mesh than to open Scratch, enable remote connections, open the Python program which then connects to Scratch and the server. Besides, just encrypting the passwords sent might be better than encrypting everything sent. Who knows. 

I thought you had to shift-click "R" to enable Mesh? Which is much more work than enabling remote sensor connections... 

I see your point, though. Perhaps mod Scratch to create a secure Mesh? That would be cool...

Technically you only need to do it once. So it isn't that much work. 

But the goal is to make Secure Mesh as portable as possible. Asking a user to download or mod code themselves beyond normal Mesh may be beyond their limits.

Last edited by Magnie (2012-04-20 14:13:09)

Magnie wrote:

blob8108 wrote:

Magnie wrote:

It's easier to directly connect to Scratch Space with Mesh than to open Scratch, enable remote connections, open the Python program which then connects to Scratch and the server. Besides, just encrypting the passwords sent might be better than encrypting everything sent. Who knows. 

I thought you had to shift-click "R" to enable Mesh? Which is much more work than enabling remote sensor connections... 

I see your point, though. Perhaps mod Scratch to create a secure Mesh? That would be cool...

Technically you only need to do it once. So it isn't that much work. 

But the goal is to make Secure Mesh as portable as possible. Asking a user to download or mod code themselves beyond normal Mesh may be beyond their limits.

Not beyond my limits.  I'll download just about anything...

Magnie wrote:

GeonoTRON2000 wrote:

Magnie wrote:

Technically you only need to do it once. So it isn't that much work. 

But the goal is to make Secure Mesh as portable as possible. Asking a user to download or mod code themselves beyond normal Mesh may be beyond their limits.

Not beyond my limits.  I'll download just about anything...

But it's easier to modify something you already have downloaded than to download something made by another user (which could be potentially harmful), isn't it?

Plus not everyone has the knowledge to do so.

Magnie wrote:

bobbybee wrote:

Magnie wrote:

But it's easier to modify something you already have downloaded than to download something made by another user (which could be potentially harmful), isn't it?

Plus not everyone has the knowledge to do so.

Or the ability. I know some people block downloading and stuff. But of course everything here is probably only going to be in Scratch, so squeak stuff other than Mesh probably.

Let's get back on topic, shall we?

Okay, so after reading a small bit about Key-Exchange Algorithms, I think the simplest way is with this method. We could create a script that repeats the method multiple times (8 for most efficient, but secure) and then convert the integers returned into letters.

I think the next step is creating a symmetric algorithm that can't be easily broken, but can still be used for a secure Mesh. Something people would be willing to transfer useful, but not important passwords over. Like a user account to a desktop computer that is only accessible by family and close friends.

Obviously a shift-cipher wouldn't be secure enough. So what ideas do you guys have?

Make sure to keep it to simple math algorithms like: Plain Text > letter'i * key'i > Cipher Text. i symbolizes which letter. So something like Letter 1 (or letter 'i') of "secret message".

Last edited by Magnie (2012-04-23 15:35:54)

Nathanator1416J wrote:

Magnie wrote:

Okay, so after reading a small bit about Key-Exchange Algorithms, I think the simplest way is with this method. We could create a script that repeats the method multiple times (8 for most efficient, but secure) and then convert the integers returned into letters.

I think the next step is creating a symmetric algorithm that can't be easily broken, but can still be used for a secure Mesh. Something people would be willing to transfer useful, but not important passwords over. Like a user account to a desktop computer that is only accessible by family and close friends.

Obviously a shift-cipher wouldn't be secure enough. So what ideas do you guys have?

Make sure to keep it to simple math algorithms like: Plain Text > letter'i * key'i > Cipher Text. i symbolizes which letter. So something like Letter 1 (or letter 'i') of "secret message".

I've Made a ton of encrypt dlls in VB.NET, so you could use one of those if you want.
Contact me at [removed]

I'm afraid we need a purely Scratch based encryption algorithm, but thanks anyways.

GeonoTRON2000 wrote:

bobbybee wrote:

Magnie wrote:

Or the ability. I know some people block downloading and stuff. But of course everything here is probably only going to be in Scratch, so squeak stuff other than Mesh probably.

Let's get back on topic, shall we?

O.K... I made a simple substitution cypher.  It's not much, but it's here: http://scratch.mit.edu/projects/GeonoTRON2000/2493091

Cool! Could you implement the encryption and decryption into a single project and upload that please? 

GeonoTRON2000 wrote:

Magnie wrote:

GeonoTRON2000 wrote:

O.K... I made a simple substitution cypher.  It's not much, but it's here: http://scratch.mit.edu/projects/GeonoTRON2000/2493091

Cool! Could you implement the encryption and decryption into a single project and upload that please? 

Sure!
Here you go:
http://scratch.mit.edu/projects/GeonoTRON2000/2495455

Thank you!

bobbybee wrote:

The problem in that project is that it's missing a key.

It's inside the project. The project notes say to change the number inside the project.

Hey guys, I don't know much about encryption, but I would like to try making one. Could I join in? I will upload it as soon as i'm finished