top | item 46369936

(no title)

kvthweatt | 2 months ago

The point is you can perform a box dimension attack.

If you have a known input, you can match all outputs.

Example: Document that DOJ took down and reuploaded that redacted Trump's name when it was previously available. They used the same size boxes in each location.

You cannot do this with handwriting, but fonts have known widths.

discuss

cortesoft|2 months ago

Couldn’t it be the same letters in a different order?

fn-mote|2 months ago

A probabilistic attack on redaction is still an attack.

You'd never be blase about the same information about your password.

Plus with redaction there's a pretty small number of posible words when the boxes are small.

dylan604|2 months ago

depending on the font used, the spacing between letters can change depending on what letters are next to each other.

BLKNSLVR|2 months ago

ie. Twerp