Created
May 4, 2017 16:54
-
-
Save unicornsasfuel/f29c4397ff87a95f25af03246c1a1ed4 to your computer and use it in GitHub Desktop.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Ode to ECB - Ben Nagy | |
""" | |
Oh little one, you’re growing up | |
You’ll soon be writing C | |
You’ll treat your ints as pointers | |
You’ll nest the ternary | |
You’ll cut and paste from github | |
And try cryptography | |
But even in your darkest hour | |
Do not use ECB | |
CBC’s BEASTly when padding’s abused | |
And CTR’s fine til a nonce is reused | |
Some say it’s a CRIME to compress then encrypt | |
Or store keys in the browser (or use javascript) | |
Diffie Hellman will collapse if hackers choose your g | |
And RSA is full of traps when e is set to 3 | |
Whiten! Blind! In constant time! Don’t write an RNG! | |
But failing all, and listen well: Do not use ECB | |
They’ll say “It’s like a one-time-pad! | |
The data’s short, it’s not so bad | |
the keys are long—they’re iron clad | |
I have a PhD!” | |
And then you’re front page Hacker News | |
Your passwords cracked—Adobe Blues. | |
Don’t leave your penguin showing through, | |
Do not use ECB | |
""" |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment