Code Book Cipher Cracked

AssFace writes: "The Code Book challenge -- I believe 10,000 pounds was the reward for it, and it consisted of 10 stages of increasing difficulty that mimicked the evolution of cryptography throughout history -- was cracked and there is a fantasitc description all at http://www.simonsingh.com/. Goodbye Simon Singh." It's a cool read, too -- both Singh's own writeup, and that of the Swedes who broke the cipher. Congratulations to the winners.

Stop!

[slashdoter]

They can't do that! That message is covered under the DMCA! it was a trick. RUN!!!

________

On a related topic...

[Vuarnet]

...anyone here knows what's the status on the Merlin Challenge book? Has it been solved yet?

This is flat out wrong.

PERIOD. Things such as this just promote the interest in cryptography and interest and knowledge in cryptography is feared and hated by governments and content industries such as those that make up the MPAA. Folks, you're not allowed to experiment with cryptography because it may give you the knowledge to crack technological protection measures which is prohibited under the Digital Millenium Copyright Act. Face it, cryptographic knowledge is a forbidden fruit. Unless you are a government employee working on a government project or a major (large corporation) copyright holder trying to protect it's assets and to assert control over it's content then you have no business to have any knowledge whatsoever about cryptography. Only criminals need to crack copyrighted material and only criminals need to hide what they say from the government. The government has our best interests at heart... AT ALL TIMES.

Its odd...

[Vippy]

Crypto is a weird subject when it comes to breaking codes and the Law. Break a code, and they make a stronger code -- it used to be.. Now if you break a code, you get sued from here to the moon. Why have a very strong encryption in the first place if your just going to cease/desist everyone who breaks it. (coughDeCSScough)...

I guess because you cant arrest the person who broke it from the Ukraine without a lot of trouble. Bah, if only we could get The Man out of the computer world, then it would be a true match between encryptors and decryptors. Would be amusing to make the Internet a scary place again.

Re:Uhh, their explaination skips a stage.

[ruebarb]

It's there. They used the Fermat Text in latin and did a letter count (as opposed to the word count in Beale Ciphers.) - Read the PDF on Simon's site. RB

stage 10

[cancerward]

stage 10 required the factorisation of a 512-bit number. Singh says the authors had access only to 'ordinary' computers but I'd think 99% of people don't have access to a computer with 4Gb of RAM like the winners did. congratulations to them on cracking stage 5 - now that was obscure!

Re:stage 10

[crt]

Well, by ordinary access I'm sure he means that anyone with enough money (probably $50-100k) can buy one without arousing suspiscion or having a federal background check. Yea, you can't buy one at CompUSA, but I'm sure you can buy one over the 'net at compaq.com...

Re:stage 10

[ckedge]

Not only that, but they had their distributed software running on hundreds of workstations. Most ordinary people don't have access to that all on their own either. Not yet.

Of course if we're talking ordinary, most ordinary people don't have the right software or the right education to do stage 9 or 10. Not yet ;)

Re:stage 10

[Pig+Bodine]

Yeah. The guy who, earlier in this discussion, referred to number 5 as almost a one-time pad (i.e. provably secure encryption) had it right. At least some of us know algorithms for factoring, even if we don't have the computer power to do it and possibly don't know the best algorithms; trying to find the right text to decode #5 must have been hellish for everyone who tried, whether they had a network of computers or an Atari 400 (my first computer at 1.79 MHz...). If, as would be reasonable for anyone trying to REALLY encrypt something, Singh had selected a random sequence of letters instead, the code would have been unbreakable.

I found the trouble people had with #5 illuminating: public key cryptography isn't everything. If you can distribute your key secretly, or not distribute it at all, symmetric cryptography can be pretty powerful. I guess that's part of why public key methods are chiefly used to distribute keys for DES and the like. (The other reason being computational complexity---would anyone use RSA to encrypt a reasonably long message?)

FWIW I've been really impressed with Singh as a science writer who tries to get it right. There aren't that many of them (and one of my hobbies is poking holes in popular accounts of science and mathematics.)

Re:Did I miss something about stage 5?

[Soko]

Get the PDF - Stage 5 is in there in detail. It was a bitch indeed...

Re:Goodbye $10K prize money? No Way.

[Webmonger]

Perhaps it was, "Hello Slashdot Effect, goodbye Simon Singh"?

Re:Did I miss something about stage 5?

[ruebarb]

The son of a bitch about stage 5 was that technically, it was a cipher of numbers built off of a key text - you use the first letter of each numbered word (for example, 1 2 3 4 5 in this comment would equal Tsoab - To make it worse, sounds like he just used a short text and numbered the letters instead. And it was a LATIN version of the text. (Lots of those were in foreign languages. Ouch)

So it wasn't so much decrypting as finding a key text that fit the numbers. It's modeled off the Beale cyphers, which are three lists of numbers that supposedly point to gold. The second one used the Declaration of Independance as a code text. No one can find the first or third, as I recall.

It's virtually a one time pad if you wrote the key text yourself, and in all other respects, is more a matter of luck in finding the text then skills/techniques used in any of the other ciphers (frequency analysis, familiarity with the cipher) and so forth) - Most groups didn't get this one till much later. Most skipped it for quite a while.

I was looking for some text that might be based in Oxford myself, like a text of Newton's or something. Suck.

Ah well...immense fun while it lasted

[dmccarty]

(Drats! Every time I really want to post a comment I load the article only to find out that I'm supposed to be moderating. Well, not this time.)

For those of you who haven't read this book but are interested in cryptography, I can't urge you enough to read it. The challenge at the back is especially enticing. I'm not sure if it will lose its appeal now that the answers are published and known, but for me there was something absolutely special about breaking the codes and knowing that I was one of the few people in the world to have done it.

I solved stages 1 - 6 and 9 (I was on the 2nd team to brute force the Stage 9 DES cipher). Stage 7 was the ADFGVX cipher used in WWI and Stage 8 was the infamouse Enigma cipher used in WWII. For those who haven't had a crack at this, it's certainly worth it. IMO there is nothing quite like revealing a code piece by piece. I was privelaged or lucky enough to decipher some of the hints on the eGroups message board and be one of the first few to solve Stage 5, and the elation from seeing--for the first time--what only a few people have ever seen is nearly indescribable.

In summary, this was a wonderful book and an excellent adventure. Best wishes to the Swedish smarties who actually cracked Stage 10 (they had to pick between brute forcing triple DES or 512-bit RSA) and to everyone else who contributed along the way. It has certainly been an excellent experience!
--

Re:Ah well...immense fun while it lasted

[Psiren]

I've just finished reading the book myself. While I didn't contemplate trying to break the codes (I don't have the patience for it) I found the book itself extremely interesting. I would certainly recommend it to anyone even remotely interested in cryptography, and not just computer users. It talks about all sorts of code breaking, including how they used the Rosetta Stone to crack the Egyptian Hieroglyph's. A very good read.

Re:Ah well...immense fun while it lasted

[Leto2]

Could you explain what stage 5 was and how you did it? The guys from Sweden explained every step except for stage 5.

Thanks in advance!

Re:Uhh, their explaination skips a stage.

The explanation does not really skip stage 5. The report was written in TeX and converted to dvi, PostScript, PDF and HTML. Some of these conversion come out better than the others. The conversion to HTML is somehow buggy so it missed the fifth stage. I do promise you that we did solve stage 5 even if it almost made us give up. I mean we searched for that keytext for more than six months and tried almost anything else we could possibly think of. /Fredrik Almgren

The most interesting part is....

[ssimpson]

This is the first time "normal" computer hardware has been used to break a 512-bit RSA key.

The first public break of an RSA key of this size was performed using 224 CPU hours on a Cray C916 whilst the team that cracked the codebook puzzles took just 13 days on a quad-Alpha Compaq beast.

Don't forget, before the export rules were changed around 90%+ of all "secure" SSL transactions on the internet were using 512-bit keys. Scary, huh?

--

Re:The most interesting part is....

[jovlinger]

I found it interesting that they had the balls to go to compaq and say "we've got a huge equation to solve. If you lend us some cycles, you can use us as a bragging point on how powerful the Alpha is."

Compaq was cool enough to take em up on it and lent them 13 days on a quad machine. That's alot of CPU that compaq donated for PR. mind you, I don't know if I think it necessarily qualifies as "normal", but still.

Will the Real Simon Singh please stand up?

[b1t+r0t]

I called the spokesperson, Fredrik Almgren, and a somewhat cautious dialogue ensued. How did the Swedes know that this was really Simon Singh on the phone and not some imposter trying to steal their solution? I was the only other person in the world who also knew the plaintexts, and this became the decisive factor in establishing a relationship of trust.

What's interesting about this is that they used the cryptography from the book as a form of authentication! Sort of like a digital signature in reverse. If he was the real Simon Singh, he would have already known the plaintext to #10, and could use that to identify himself. And if he weren't, then he would presumably be from a team that had already solved it, so why bother calling them? (Yeah, I know, they might have solved every one but #5, but the same challenge/response works for all the problems, and strengthens the authentication.)

Re:Where are the problems?

[AssFace]

If you go to egroups.com, there is a mailing list called "cipherchallange" that was devoted to this book. in the files section they have electronic versions of all the cipher texts as well as a ton of other data in there.
------------------------------------------ --------