FranckFranck

PRNG

• Secure Applications of Low-Entropy Keys http://www.schneier.com/paper-low-entropy.html
• countermode: http://en.wikipedia.org/wiki/Counter_mode#Counter_.28CTR.29

PDP/Provable Data Possession at Untrusted Stores

• A Security Protocol for Self-Organizing Data Storage http://www.eurecom.fr/util/publidownload.en.htm?id=2399 Check
• Provable Data Possession at Untrusted Stores http://www.cs.berkeley.edu/~dawnsong/papers/p598-ateniese
• http://citeseerx.ist.psu.edu/viewdoc/summary?doi=10.1.1.61.8040
• Trusting the Cloud, http://webee.technion.ac.il/~idish/ftp/Trust-Cloud09.pdf

A brute force attack against stronghold

Attack: We search using brute force by trying out different user-password combinations and generating a key-pair and verify it (against public key??) The keyspace corresponds to the space of user-password combinations. The complexity of the attack corresponds to the actual entropy in the keyspace.

Defence: the key generation is a rare operation (creation+recovery), make it expensive by key stretching.