this post was submitted on 23 Nov 2025
239 points (98.0% liked)

Not The Onion

18718 readers
459 users here now

Welcome

We're not The Onion! Not affiliated with them in any way! Not operated by them in any way! All the news here is real!

The Rules

Posts must be:

  1. Links to news stories from...
  2. ...credible sources, with...
  3. ...their original headlines, that...
  4. ...would make people who see the headline think, “That has got to be a story from The Onion, America’s Finest News Source.”

Please also avoid duplicates.

Comments and post content must abide by the server rules for Lemmy.world and generally abstain from trollish, bigoted, or otherwise disruptive behavior that makes this community less fun for everyone.

And that’s basically it!

founded 2 years ago
MODERATORS
kescusay@lemmy.world
239
Cryptographers Held an Election. They Can’t Decrypt the Results. (www.nytimes.com)
submitted 6 days ago by Aatube@kbin.melroy.org to c/nottheonion@lemmy.world
24 comments fedilink hide all child comments
 

So secure was the annual contest to fill three director and four officer positions that when one trustee lost his cryptographic key to unlock the results, the error made it impossible.

you are viewing a single comment's thread
view the rest of the comments
[–] Technus@lemmy.zip 104 points 6 days ago (3 children)

Assuming they were using threshold cryptography, they could have easily configured some redundancy into the system, e.g. by requiring 3 out of 5 people to decrypt it instead of 3 of 3.

It's easy to blame the one guy for losing the key, but he could have gotten hit by a bus or lost the hard drive in a house fire and they would have been equally as screwed. This is more of a system design failure than a PEBKAC failure.

[–] pupbiru@aussie.zone 50 points 6 days ago (2 children)

in complex systems design, you never blame human error. humans are fallible, and if the system doesn’t account for human error then it’s just a matter of time until failure occurs. look for a way to make the system tolerate or eliminate human error

[–] Tar_alcaran@sh.itjust.works 14 points 6 days ago (1 children)

Normal error theory even takes the view that errors are inevitable in complex systems and that you need to design them so that the effects of those errors can't escalate.

[–] pupbiru@aussie.zone 3 points 5 days ago

literally the same concept as a comment i just wrote about russian hypersonic missiles breaking apart mid flight because they didn’t put limits on how fast they can change course when going mach 5 aha

[–] SuperNovaStar@lemmy.blahaj.zone 5 points 6 days ago (1 children)

look for a way to make the system tolerate human error

Ah, if only managers understood this principle.

My motto is that "all failures are management failures." But I'm not far enough up the chain to really implement that 😅

[–] pupbiru@aussie.zone 1 points 5 days ago (1 children)

idk i fuck up and release buggy code at least 10% as much as management makes dumb ass decisions

[–] FuglyDuck@lemmy.world 2 points 5 days ago

And the 10% when you do… you were mismanaged!

[–] ApathyTree@lemmy.dbzer0.com 9 points 6 days ago (1 children)

According to the article they changed the procedure to require 2/3 keys, so at least they learned that lesson.

[–] fatalicus@lemmy.world 19 points 6 days ago (1 children)

Which is stupid, since the reason they had 3/3 was that two people could not collaborate to change the results, which they now can with 2/3.

Should have been changed to 3/5 instead.

[–] Technus@lemmy.zip 3 points 5 days ago

Exactly, it's worse all around.

And it's not like it's hard to use a different configuration; the threshold and total number of keys are just parameters of the algorithm.

[–] quick_snail@feddit.nl 2 points 5 days ago (1 children)

The article concludes that's exactly what they're doing. Both changing to 2/3 and also providing clearer instructions to key holders.

[–] Technus@lemmy.zip 1 points 5 days ago

See the reply thread just above this: https://lemmy.zip/comment/22938983