A nonce is not a key, it's a piece of random that is meant to be used at most on... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		Rygian 10 months ago \| parent \| context \| favorite \| on: We clone a running VM in 2 seconds (2022) A nonce is not a key, it's a piece of random that is meant to be used at most once. If an attacker sees valid nonces on a VM, and knows of another VM sharing the same nonces, then your crypto on both* VMs becomes vulnerable to replay attacks. *read: all

nodesocket 10 months ago | [–]

How would a reply attack work in production assuming multiple VMs share a nonce?

saagarjha 10 months ago | | [–]

You record the traffic going to one VM and send it to another, which will now accept it because the nonce is the same.

trollied 10 months ago | [–]

“Number ONCE”. NONCE. Indeed.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact