Exetools  

Go Back   Exetools > General > General Discussion

Notices

Reply
 
Thread Tools Display Modes
  #46  
Old 10-30-2017, 23:53
contextrax contextrax is offline
Friend
 
Join Date: Aug 2017
Posts: 43
Rept. Given: 0
Rept. Rcvd 17 Times in 7 Posts
Thanks Given: 4
Thanks Rcvd at 72 Times in 19 Posts
contextrax Reputation: 17
I did a more accurate calculation and I see now we have a 18% change of solving.
Here is the formula based on the wiki birthday page:
100*(1-exp(-((0xAD87E3B2BA1AE)**2)/(2*(2**112/(2*113)))))

Put this into google and it should print out ~18.36
0xAD87E3B2BA1AE is the current iteration of today

When we hit 2^52 iterations we have a ~35.69% chance of solving.
100*(1-exp(-((2**52)**2)/(2*(2**112/(2*113)))))

2^53 would give ~83% so I don't think we need to go this far

Need more CPU's

Last edited by contextrax; 10-31-2017 at 00:06.
Reply With Quote
  #47  
Old 10-31-2017, 00:04
contextrax contextrax is offline
Friend
 
Join Date: Aug 2017
Posts: 43
Rept. Given: 0
Rept. Rcvd 17 Times in 7 Posts
Thanks Given: 4
Thanks Rcvd at 72 Times in 19 Posts
contextrax Reputation: 17
Quote:
Originally Posted by SKiLLa View Post
No I simply meant an update to the solver .exe it self
I get that the status and data itself will be updated through the Server-stats.

For example if you would encounter a bug (i.e. want to push a fix) or have some improved attack algorithm.

Ofcourse for this specific EC-113 Arma curve it's not very likely (since most crunching already has been done); but perhaps for a future version attacking a different curve or using different (non Arma) Crypto-constraints. ECC is everywhere nowadays, so I can imagine another iteration some day ...
Ah I see now.
Well if I started to push new exe files then I guess none would dare running it
Of course they needed to be digitally signed so no one could just hack my server and send out new updates but then everyone must trust me
The solver exe file I have made public was uploaded to virus total so you could check it before you run it. I think asking more from any one running it would be a bit to much.

Anyone else would like to comment on this? Would you run a self up gradable exe from someone you don't know?
Reply With Quote
  #48  
Old 10-31-2017, 00:39
SKiLLa SKiLLa is offline
Friend
 
Join Date: Jul 2016
Location: Europe
Posts: 27
Rept. Given: 0
Rept. Rcvd 0 Times in 0 Posts
Thanks Given: 17
Thanks Rcvd at 16 Times in 15 Posts
SKiLLa Reputation: 0
It doesn't have to be an auto-update feature; it could just advertise it as in 'There is a new version x.xx; download here: ...'. Great stuff on adding the probability btw; is that like a hardcoded message or does it use the mentioned formula in (semi-) real-time ?
Reply With Quote
The Following User Says Thank You to SKiLLa For This Useful Post:
bolo2002 (11-02-2017)
  #49  
Old 10-31-2017, 04:00
Abaddon Abaddon is offline
Friend
 
Join Date: May 2016
Posts: 43
Rept. Given: 0
Rept. Rcvd 3 Times in 3 Posts
Thanks Given: 181
Thanks Rcvd at 45 Times in 25 Posts
Abaddon Reputation: 3
Under different circumstances i would have joined the project. Unfortunately a power surge about 9 months ago has fried up my windows machine, leaving me with a macbook air with the processing power of a potato-powered flashlight.

However, i find the coordinated effort and the explanations given to this thread to be of much more value than the final product of this specific project. Could I entice you guys (especially contextrax, who seems to be the initiator and coordinator of the venture) to release (apart from the obvious final product, the private key) a paper describing the chronicle of the effort, explaining the methods used, and perhaps suggesting pointers for future collaborative efforts on similar projects (with emphasis on how a distributive attack system should be designed?).

Last edited by Abaddon; 10-31-2017 at 04:05.
Reply With Quote
The Following 2 Users Say Thank You to Abaddon For This Useful Post:
mr.exodia (10-31-2017), tonyweb (11-04-2017)
  #50  
Old 10-31-2017, 07:46
contextrax contextrax is offline
Friend
 
Join Date: Aug 2017
Posts: 43
Rept. Given: 0
Rept. Rcvd 17 Times in 7 Posts
Thanks Given: 4
Thanks Rcvd at 72 Times in 19 Posts
contextrax Reputation: 17
Quote:
Originally Posted by SKiLLa View Post
It doesn't have to be an auto-update feature; it could just advertise it as in 'There is a new version x.xx; download here: ...'. Great stuff on adding the probability btw; is that like a hardcoded message or does it use the mentioned formula in (semi-) real-time ?
For now it's hard coded manually.
Reply With Quote
  #51  
Old 11-01-2017, 04:09
SKiLLa SKiLLa is offline
Friend
 
Join Date: Jul 2016
Location: Europe
Posts: 27
Rept. Given: 0
Rept. Rcvd 0 Times in 0 Posts
Thanks Given: 17
Thanks Rcvd at 16 Times in 15 Posts
SKiLLa Reputation: 0
@Abaddon: Much of the theory & math behind attacking a 113 bit Koblitz curve it can be found in the whitepaper contextrax already linked (and others; there's quite a lot of research on it actually). But I certainly second your suggestion about the implementation optimalisation & distributed coordination details.

Would love to see this project turn into an open source framework for future alike distributed projects, but I do realize that it would take some serious effort by contextrax (and hopefully others) to get there (plugin architecture, accounting, redundancy, result verification distribution algorithms, etc) ...
Reply With Quote
The Following User Says Thank You to SKiLLa For This Useful Post:
Abaddon (11-16-2017)
  #52  
Old 11-15-2017, 23:21
SKiLLa SKiLLa is offline
Friend
 
Join Date: Jul 2016
Location: Europe
Posts: 27
Rept. Given: 0
Rept. Rcvd 0 Times in 0 Posts
Thanks Given: 17
Thanks Rcvd at 16 Times in 15 Posts
SKiLLa Reputation: 0
Hi guys,

I convinced a friend of mine to join sieving; but he's running Linux Mint 18.x and using Wine to run the solver tool; which is running just fine and reporting works as well (I can see his points in my solver stats-screen just fine), but when he tries the [Get Server Statistics], he always get a 'Server Error' (and the error-log holds no additional data).

Anyone a clue ? His machine is reported as Win64 in the local-statsfile ...
Reply With Quote
  #53  
Old 11-17-2017, 22:13
contextrax contextrax is offline
Friend
 
Join Date: Aug 2017
Posts: 43
Rept. Given: 0
Rept. Rcvd 17 Times in 7 Posts
Thanks Given: 4
Thanks Rcvd at 72 Times in 19 Posts
contextrax Reputation: 17
Quote:
Originally Posted by SKiLLa View Post
Hi guys,

I convinced a friend of mine to join sieving; but he's running Linux Mint 18.x and using Wine to run the solver tool; which is running just fine and reporting works as well (I can see his points in my solver stats-screen just fine), but when he tries the [Get Server Statistics], he always get a 'Server Error' (and the error-log holds no additional data).

Anyone a clue ? His machine is reported as Win64 in the local-statsfile ...
It's a bit strange that reading server stats wont work while posting points do.
You could ask him to try again coz I just moved my server to a different provider.
Also the Win64 is a hard coded value in the solver so there is no OS detection there.
If I make a linux version then this field will be updated.
Reply With Quote
  #54  
Old 01-20-2018, 04:33
contextrax contextrax is offline
Friend
 
Join Date: Aug 2017
Posts: 43
Rept. Given: 0
Rept. Rcvd 17 Times in 7 Posts
Thanks Given: 4
Thanks Rcvd at 72 Times in 19 Posts
contextrax Reputation: 17
ECDLP Solved

Start date 2017.08.22
Solution found on 2018.01.19

The two colliding points was both found on my own computers.
Number of points collected is 11.423.593
Total number of iteration used is 0x1AE3F1`AE655476 (7 568 976 546 976 886)
The probability for solving at this point was 71.2% (Using both negation and frobenius map). This is a bit on the unlucky side. I was really hoping to get a solution before this.
The average number of iteration to find a distinguish point is 0x277E13F9. If I was to do this again I would lower this value.
Fastest point was found after only 0x2D iterations and the longest run to find one was 0x2`9F20FA67 iterations
Loading all points into memory required 348 Meg of RAM and it took about 3.5 min to load them and to calculate the solution.


Different CPU speeds running the solver v1.47:
Intel Core i7-6700 @ 3.40 GHz was able to get 52 million iterations/sec. (4 cores + HT)
Intel Core i5-4590 @ 3.30 GHz got 31 million iterations/sec
Intel Core i5-4250U @ 1.30 GHz got 14 million iterations/sec. (2 cores + HT)

Code:
Target: "Armadillo v9.64 Public"

Optimal Normal Base Type II
BasepointInit: 1570789295 (0x5DA057AF)
ONB2 Base.X  : 4089747062247003654720736468506441
ONB2 Base.Y  : 10111618751385367037406972360317044
ONB2 Pub.X   : 2127081270816270912006137526418476
ONB2 Pub.Y   : 7206819234412870204027887633390168
Secret       : 1984557253727814641989266002264698
Pub = Secret*Base

Code:
---- Start Keygen -----
Using HK symmetric key: BDA4FA1C
Key bytes before encryption: 1B 2E BD A4 FA 1C
Basepointinit set to : 0x5DA057AF (1570789295)
seed128 string  : "PVTKEYECCRND1516390685"
Using secret key: 1984557253727814641989266002264698
Curve SEED      : 1570789295
Base Point x    : 4089747062247003654720736468506441
Base Point y    : 10111618751385367037406972360317044
Public Point x  : 2127081270816270912006137526418476
Public Point y  : 7206819234412870204027887633390168
Private key     : 1984557253727814641989266002264698
key bytes       : 0A 84 04 23 16 01 48 41 43 4B 45 52 4D 41 4E 40 48 41 43 4B 2E 4E 45 54
prng string     : MAODAFJOEACPMLOJOOPPNDFIDKGJIIIENBJECGKF

User : hackerman@hack.net
Key : 000014-588113-2R0T9R-E9YFYX-45W1QA-Z7X7WV-A36KAY-8CDJZF-WP5JUM-8PBHCB
Reply With Quote
The Following 9 Users Gave Reputation+1 to contextrax For This Useful Post:
cjack (01-27-2018), copyleft (01-23-2018), deepzero (01-26-2018), HooK (02-28-2018), MarcElBichon (01-21-2018), mr.exodia (01-20-2018), niculaita (01-20-2018), TechLord (01-21-2018), tonyweb (01-21-2018)
The Following 14 Users Say Thank You to contextrax For This Useful Post:
Abaddon (01-22-2018), Apuromafo (03-04-2019), cachito (01-20-2018), cjack (01-27-2018), heXer (01-22-2018), HooK (02-28-2018), niculaita (01-20-2018), revert (02-18-2018), sendersu (01-25-2018), Stingered (01-22-2018), T-rad (01-20-2018), WaSt3d_ByTes (01-28-2018)
  #55  
Old 01-21-2018, 17:17
tonyweb tonyweb is offline
Family
 
Join Date: Jan 2009
Posts: 190
Rept. Given: 190
Rept. Rcvd 95 Times in 36 Posts
Thanks Given: 1,901
Thanks Rcvd at 299 Times in 122 Posts
tonyweb Reputation: 95
Thank you contextrax for your work (and the math!) and for sharing the results.
Great job!

Just want to add this statement (IMHO it was missing from the post above ) ... forgive me if it's inappropriate:

Thank you also to all who, in the shadows or in a gray area (lol ), helped with running the tool and seeding results

Best Regards,
Tony
__________________
Want to learn unpacking ... but I'm too stupid
Reply With Quote
The Following User Says Thank You to tonyweb For This Useful Post:
TechLord (01-21-2018)
  #56  
Old 01-23-2018, 01:03
bolo2002 bolo2002 is offline
VIP
 
Join Date: Apr 2002
Posts: 614
Rept. Given: 111
Rept. Rcvd 14 Times in 13 Posts
Thanks Given: 217
Thanks Rcvd at 238 Times in 152 Posts
bolo2002 Reputation: 14
Quote:
Originally Posted by tonyweb View Post
Thank you also to all who, in the shadows or in a gray area (lol ), helped with running the tool and seeding results [/U]

Best Regards,
Tony

glad to provide many cpu's times to help with it.
__________________
I like this forum!
Reply With Quote
The Following 3 Users Say Thank You to bolo2002 For This Useful Post:
contextrax (01-27-2018), tonyweb (02-04-2018), WaSt3d_ByTes (01-28-2018)
  #57  
Old 01-27-2018, 08:52
contextrax contextrax is offline
Friend
 
Join Date: Aug 2017
Posts: 43
Rept. Given: 0
Rept. Rcvd 17 Times in 7 Posts
Thanks Given: 4
Thanks Rcvd at 72 Times in 19 Posts
contextrax Reputation: 17
Quote:
Originally Posted by bolo2002 View Post
not even a thank you,i expected a bit more from you.
i let run run many hours your solver to help.
well,it's a world and it's like that,i learn every day..
Isn't it against the forum rule to write thanks?

Anyway. Thanks for joining in on this.
Reply With Quote
The Following 2 Users Say Thank You to contextrax For This Useful Post:
Abaddon (01-28-2018), tonyweb (02-10-2018)
  #58  
Old 01-27-2018, 09:11
Stingered Stingered is offline
Friend
 
Join Date: Dec 2017
Posts: 256
Rept. Given: 0
Rept. Rcvd 2 Times in 2 Posts
Thanks Given: 296
Thanks Rcvd at 179 Times in 89 Posts
Stingered Reputation: 2
Quote:
Originally Posted by contextrax View Post
Isn't it against the forum rule to write thanks?

Anyway. Thanks for joining in on this.
Indeed it is, lol!

I do appreciate your hard work and I sincerely hope that mr.exodia adds this functionality to his AKT!

Cheers mate!
Reply With Quote
  #59  
Old 02-06-2018, 09:50
MrScotc MrScotc is offline
Banned User
 
Join Date: Dec 2017
Posts: 33
Rept. Given: 0
Rept. Rcvd 1 Time in 1 Post
Thanks Given: 29
Thanks Rcvd at 34 Times in 12 Posts
MrScotc Reputation: 1
Hi, is it possible to write down all your discovery and translate into a PDF ?
Reply With Quote
  #60  
Old 02-17-2018, 04:53
contextrax contextrax is offline
Friend
 
Join Date: Aug 2017
Posts: 43
Rept. Given: 0
Rept. Rcvd 17 Times in 7 Posts
Thanks Given: 4
Thanks Rcvd at 72 Times in 19 Posts
contextrax Reputation: 17
Here is the link to a stripped down source code if anyone wants to have a look.
A GPU version and or Linux version would be great

If any questions then just shoot

ECC Source
Reply With Quote
The Following User Gave Reputation+1 to contextrax For This Useful Post:
cjack (02-18-2018)
The Following 4 Users Say Thank You to contextrax For This Useful Post:
alekine322 (02-18-2018), cjack (02-18-2018), RedLord (02-20-2018), tonyweb (02-17-2018)
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Replacing ECDSA in Target (arma) Mynotos General Discussion 3 11-22-2019 00:49


All times are GMT +8. The time now is 17:46.


Always Your Best Friend: Aaron, JMI, ahmadmansoor, ZeNiX, chessgod101
( 1998 - 2024 )