Slashdot Mirror
Animated Encryption
An anonymous reader submits: "Cartoons for fun and secrecy -- A student at the University of Dayton has apparently come up with an encryption
scheme using computer generated animation. Story at the Chronicle of Higher Education."
He will be missed
Show me That Smile (The Growing Pains Theme Song):
Show me that smile again.
Ooh show me that smile.
Don't waste another minute on your crying.
We're nowhere near the end.
We're nowhere near.
The best is ready to begin.
As long as we got each other
We got the world
Sitting right in our hands.
Baby rain or shine;
All the time.
We got each other
Sharing the laughter and love.
Alan Thicke's Journal
My Slashdot ads say "
fun.
Reposting again. Managed to get up to 50 Karma, posted ONE pro-Troll message, and got mod-bombed. This diatribe was truer than I thought. CLiT, I shall be honored if you accept me as a member!
Visitors to the website slashdot.org will by now have surely heard of the act of Moderation. This is where a contributor's post can be 'Moderated' either positively or negatively, depending on how the Moderator perceives the value of the post. There is a sliding scale of total moderation points, from -1 to 5, along with snappy summaries of the reason for moderation, such as "Funny", "Insightful", or the ever popular "Troll". An additional benefit offered to Moderators is the ability to ban a poster from contributing, by negatively moderating enough of his postings in a 24 hour period.
In order to retain some level of fairness for the Slashdot population, the Slashdot Editors (adopting the role of 'Benevolent Dictators') have implemented a scheme whereby regular users of Slashdot, chosen essentially at random, are given the ability to act as Moderators.
This underlines an inherent flaw in the system. Psychological studies have shown that in any community, no matter how small, should a random sampling of people be given the slightest grasp of power, they will immediately abuse it. There is a primal, evolutionary desire in Man to place himself higher than his peers by whatever measurement they can muster. Slashdot Moderation provides the ideal means for which a man can prove himself more equal than others.
At the risk of invoking Godwin's Law at such an early point in my thesis, I have no choice but to compare Slashdot Moderation to the systematic genocide of the Jewish community in 1930's Germany.
A bold statement, I admit, and deliberately designed to shock, but I feel the statement is necessary. I shall now offer a more rational explanation, as well as a comparison of the parallels between Slashdot Culture, and the National Socialist regime.
First, some history. National Socialism did not spring up overnight. It grew from a feeling of national bitterness and resentment at the war reparations Germany was forced to make after World War One. Germany was a broken country, populated by desperate starving people. And to the desperate, an extreme ideology begins to seem like a rational choice.
The advent of new technology forces a paradigm shift in the way the beholders of that technology think. The Christianity Meme was made wide spread by the invention of the Gutenberg press. And the rise of National Socialism was made popular because of the invention of Cinema. Here we had a new means to control the flow of information to the populace, that they are willing to unquestioningly listen to due to the 'novelty factor' of moving pictures. It is no coincidence that some of the best Cinematography of the early 20th Century came out of the National Socialist propaganda machine.
Why is this the case? It is yet another fault of man that a new means of distributing memes is perceived, due to the 'newness' of the medium, to have a greater 'validity' than older media. Those harnessing new inventions have the power to win control of the hearts and minds of others.
With the tools in place, who should the National Socialists target? Clearly, as a counterpoint to Man's desire to hold power over others, there is also a desire to resent the success of others. If someone is successful, they reduce the self-worth of their beholders. Although times were harsh in Germany in the prelude to World War II, there were still successful inhabitants of that country. Possessing shrewd business acumen as well as the contacts in other countries needed to maintain support in such a poverty stricken and broken land, who else should deserve the wrath of the populace more than the Jews?
Fast-forward to the latter quarter of the 20th Century. Computing technology is focused in niche markets, and limited to big successful companies like IBM and Microsoft. As the markets were limited, there were also limited opportunities for employment. This gave rise to a rising number of college dropouts, seething with resentment and unable to relate to society beyond the staccato clatter of keyboards and the pallid green glow of an 80x24 text display, and lacking the basic business skills (and a smart suit) needed to secure employment at one of these companies.
At this time, a new invention was beginning to take hold in College campuses throughout the world. The Internet. As with the Gutenberg press and Cinema beforehand, this new technology would grow to spread one of the most virulent memes of the modern age - Open Source Software, created as the antithesis of successful business practise.
So, the parallels between the birth of Anti-Semetic National Socialism and the birth of Open Source Software have been made. Of course, it is easy to claim that A=B without providing further logical evidence in support. So, the next task of my thesis is to provide further parallels, and bring this discourse back to the initial focus on Slashdot Moderation.
Slashdot was conceived, in it's original 'Chips 'n' Dips' incarnation, as a vehemently anti-corporate Open Source website. Roughly 10-15 years down the line from the birth of Open Source, it has become saturated with propaganda, and now forms the centrepiece of the Open Source Development Network. An authority in it's field, Slashdot's success is in no small part due to the ability of the editors to 'pick and choose' valid news articles submitted by users, and present the same old tired "Open Source Good / Closed Source Bad" rhetoric time and time again, dabbling with anti-copyright and the right of the 'common man' to remove an artist's ability to gain compensation for the work. In essence, this is similar to the 'paring down' of artistic worth in 1930's Germany. If no-one is willing to contribute valid and vibrant art to the community, then all art shall become harsh and functional, possessing a certain intimidating aesthetic.
Which leads onto Open Source's shining achievement - Linux. This diatribe is not aimed towards Linux in particular, as it is a well-oiled, well-tuned machine. A technically adept Operating System, it is worthy of admiration by any rational man. The point of this thesis is not to attack the art produced by Open Source coders, which in itself is worthy, but to enlighten all as to the political processes behind the OSS movement.
By the same scale, it is hard to fault Mercedes for the technical excellence of the vehicles which were used by the National Socialist party. But the politics behind the party are what taint the image of Mercedes' vehicles of the era. The Swastika itself is a benign symbol, found this day in such diverse locations as Pokemon cards, but is permanently tainted with the history of the acts made under its auspice. In the same way, companies switching to Open Source solutions will begin to regard the Penguin with the same trepidation as their profits fall.
It should be worth noting at this point that IBM, previously one of the world's greatest companies, has begun reporting servere financial losses, no doubt due to its adoption of Open Source practises. This epoch-making event was NOT reported on Slashdot, even though articles were submitted.
And what of the other great company mentioned above? Microsoft, aka Micro$oft, Mickeysoft, Microshaft, Kro$oft, and many other derogatory and undeserved names. Throughout the previous 25 years, Microsoft has grown from strength to strength, again possessing shrewd business acumen as well as providing products that people want. This makes them the number one target for the OSS movement. Incapable of standing by their own merits, the OSS zealot would rather attack Microsoft as a priority than produce anything of worth for their community.
Slashdot Moderators, crazed with their limited new-found power, exhibit this behavior. It is a sad state of affairs that the majority of article moderations are negative. Where is the positive feedback and sense of social contribution? Nowhere to be found. Moderators are too focused on putting their peers down to make themselves appear superior, rather than doing the hard work and becoming better on their own terms.
As the National Socialists required a scapegoat, Slashdot Moderators require a constant stream of Postings to label '-1, Inferior'. Once a posting is reduced to the score of -1, it becomes invisible to the casual user. Again, this is a parallel to the Ghettoization of Germany upon the election of Hitler.
In essence this would not be so bad, were postings to be evaluated on their own terms. However, alongside the moderation of their postings, each user has a 'Karma' value, namely the sum of their worth to the Slashdot community. As a user's posts are moderated up or down, so their Karma fluctuates. As Karma becomes negative, a user's default posting score is reduced, until they are posting at a default of -1. Again, ghettoizing PEOPLE, not just their opinions.
This ghettoization is reinforced with the often fake belief that a negatively moderated post, and therefore the poster, is a "Troll". (Is it any wonder that such a name has been chosen to describe these people, invoking mental imagery of facial disfigurement and hooked noses?) As the Jews were accused of fraud, dishonesty and being subhuman animals, so too are Trolls accused of FUD, Crapflooding, and obfuscated goatse.cx links. Quite often, these 'undesirables' are capable of providing a valid insightful comment on a topic, but because it is in opposition to the Political dogma of Slashdot they are moderated back into their ghetto. The person becomes moderated, not their opinion.
This is just the thin end of the wedge. Although, as memes are transient, it is difficult to silence an opinion, it is trivial to silence a person. Upon the rise of National Socialism in Germany, the populace were motivated by propaganda into entering the Jewish Ghettos en masse with the sole purpose of causing as much damage as possible to Jewish businesses and residences. The infamous Krystalnacht. This parallels far too accurately with the Slashdot Editor's non-discouragement of the act of IP-banning. As mentioned above, this occurs when an individual user's postings are repeatedly moderated down in a short period. They then become incapable of posting any contributions themselves. In essence, they have been silenced, regardless of the worth of their postings.
Of course, the editors claim that Meta-Moderation is the panacea to solve this clear abuse of moderating privledge. But if a Meta Moderator is presented with a list of moderations that they disagree with, such as this targetted 'silencing' mentioned above, they cannot note them as such without in turn becoming an 'Undesirable' themselves, as too many Disagreements with the Moderation groupthink also result in loss of Karma.
Throughout all of this, the Editors have claimed a false level of detachment from the acts of moderation. In a same way, as the National Socialists gathered their power and began working on their Elite Political wing, The SS, they too remained detached from the civilians working in their name. Why? Because after inspiring the populace to such acts of violence through their propaganda, they could then claim that they were only giving the people what they want.
And then began the next stage of the atrocities. The Gestapo, Germany's secret police, were recruited from the best and the brightest of Germany's elite. As is the case now, the best and the brightest of society were often shunned and ostracized in society. In essence, the Gestapo were a tightly controlled 'Geek Army' of intelligent young men with a burning, seething resentment of normal society. The perfect psychological profile for the cause.
After all, give a normal man (with an active sex life) a gun and he will use it responsibly in self defence. Give a geek a gun and he will behave according to his sociopathic logic and hatred of the world he arrogantly presumes to be distant from. Ask yourself why Slashdot flat-out justified the murder of innocents at Columbine. And then ask yourself why, even for a brief moment, you almost began to sympathize with the killers after Jon Katz' manipulative and pseudo-emotive Hellmouth articles.
How this relates to Slashdot is clear. The majority of Slashdot posters are Sociopathic OSS zealots, unable through lack of social finesse or personal hygiene to mate regularly. Sexually and emotionally frustrated and with grudges to bear, incapable in their blinkered sense of self-righteousness of accepting any dissenting opinion than the OSS cause. Now give these people the opportunity to Moderate these dissenting opinions. Of course they are going to want to silence them, by any means necessary.
Now, the Slashdot Editors have admitted taking this silence of opinion into the next stage, by moderating whole swathes of 'undesirable' posts negatively. And then permanently banning anyone who moderates said posts back up from moderating EVER again! The result of this new policy? The few Moderators with any sense of fairness and decency are removed from the moderation pool, leaving the power ENTIRELY in the hands of the zealots. Clearly, positive moderation is discouraged under this regime, which is a direct parallel with the way the National Socialists moved their own sympathisers into positions of power throughout Europe.
So how does this compare to the genocide performed in Auschwitz and their ilk? I would like at this point to explain that in NO way do I wish to belittle the horrors that were performed in the name of National Socialism. The six million innocents killed were a cry of anguish from which humanity may never recover. And a vast distance in time and scope from a few banned posters on some shitty "My Favourite Links - now with comments" website. But these stories need to be retold before the horror is lost forever.
For the only thing that we learn from history is that we never learn anything from history. Time and time again, the St. Vitus dance is played out, we make the same mistakes, and we perpetually fail to see the warning signs.
So, moderators, the next time you moderate a rational, insightful post down, maybe because you disagree with it or because it's posted by a 'Known Troll', just ask yourself this...
"Why did they cancel my favorite Sci-Fi show? I downloaded ALL the episodes!"
first post
sorry, cant hlp it
yay
I'd like to wish a happy july 4th to the country that funds Israel's terrorism, created the DMCA, and generally wipes it's ass on the rest of the world.
Happy July 4th you filthy pig fuckers.
The Slashdot Effect: A new for
not worth a full post but please check out this url :: jasonmcveigh.tripod.ca
The article was a bit scant on details. As we've seen before, if you keep your encryption scheme unpunlished and just claim that it is 'unbreakable', usually someone comes along later when it is in use and breaks it for you.
..
Actually it sounds quite similar to the 'teenage genius' story of that Irish schoolgirl who had her similarly 'unbreakable' matrix encryption scheme widely publicized without peer review, and then broken.
It'll be interesting to see what happens in this case
who got an early post.
--
Mamma look!
There seem to be no details in the story about just What this marvelous breakthough is; it can't just be that they use encrypted data as motion data and generate a cartoon of it - that is just steganography, and a pretty obvious version too (plus of course, any movement of one character that obscured a move of another would cause data loss).
Anyone know of a more technical piece on this?
-=DaveHowe=-
This is such a pointless article. They give no insight on the technology. And one of the major points: The inventor is a teenager. Ok ... Maybe if they write about it in a couple of years when the patent passes it might not be a wast of time/bandwidth to read that article. There was no insight only saying saying that he used random numbers and cartoons. And oh yeah, they tried to sell it. If you are going to write about a tech, please .... please describe the technology, isn't that the point ?
--=.=-- www.cyber2000.qc.ca
What happens when you need to break the encryption?
... ;-)
Do you call in The Tick?
Freakazoid?
The Brain?
Who knows
There already is an unbreakable encryption: the One-Time Pad. Furthermore, it is mathematically provable that no unbreakable encryption can have a shorter key than the One-Time Pad. Since the One-Time Pad algorithm is already extremely simple and fast (XORing the key with the plaintext), I don't see a need for any other unbreakable encryption.
How does he generate his randow numbers?
A computer can do pseudo randomness... but since it's not truly random there are ways to detect periodic repetitions and thus find the missing key to decrypt the message...
The only way to be truly random would be to have an outside source (like a camera pointing to lava lamps, or a tree in the wind, backgroud noise, etc...).
This article is not very detailed, but I understand this invention is in the process of being patented, so we'll have to wait...
Try it! Library of Babel
...means you bit-reverse that byte. Glorious. And this message is double ROT-13 encoded, so anyone reading it is in violation of the DMCA. *shakeshead*
Booyah!
Maybe it is just me, but I think the poster is a little bit confused. It is not that animation is being used in encryption, but rather he was inspired by the crowd scene in Hunchback, where the characters movements were essential being controlled by random numbers to create a lively and chaotic look to it.
The article then states that the thought was to use random data in an encryption algorythm to make it unbreakable. So I don't think that we will be seeing messages passed around the the next Disney flick...
" He hopes to sell the technology to computer companies, banks, government agencies, and other organizations that could use a secure code."
Am i the only one who can't see many / any real world applications for this.
Cruise TT
Working with stick men in animation, Mr. Kauffman wanted to improve upon those techniques, assigning more numbers to more body parts and actions.
While studying number generators for the cartoon project, he found references to mathematicians and computer scientists who had theorized that the technique could be used in encryption technology [...]
"Since you don't know what any of the values are mathematically, [a hacker] can't solve it," says Robert E. Kauffman, who is a senior research chemist at Dayton and Jason Kauffman's father.
If I understand it correctly, Alice sends a cartoon to Bob. Bob knows which features to looks for (for example the head and feets) -- that's the secret key -- and can then reconstruct the message by analysing the movements of these features.
Not too dumb, but it looks more like steganography than cryptography.
GFK's
new, and potentially unbreakable, encryption technology
Unbreakable? Sounds like snake oil already...
An idea dawned on him for a unique way to use random numbers in a math equation to encrypt data.
"Since you don't know what any of the values are mathematically, [a hacker] can't solve it,"
This is ridiculous. Some stream ciphers use random number generators for their encryptions. The problem is, that since the "random" numbers come from a random number generation algorithm, they are not random -- they just appear to be. When they are subject to analysis, patterns are found, and the whole system is compromised. The security lies in how hard it is to predict the "random" numbers.
Jason Kauffman is going to continue plugging away at his mechanical-engineering degree.
That's a good idea, since this sounds like the junk "unbreakable" encryption that comes around every few years. If he's interested in encryption, he should take some advanced math classes to get a better foundation to work from. And pick up a copy of Applied Crytography.
Sorry about the rant... but this kind of thing gets me going.
Random numbers are used extensively within encryption techniques, particularly for generation of keys. As the key is primarily the guardian of your data, it is vital that it is truly random to ensure it can't be guessed or determined by frequency analysis (or other methods).
This is particularly important for block cipher algorithms which use the same key over and over again on successive blocks of data!
The theory of relativity doesn't work right in Arkansas.
Two problems with one-time pads:
1) Generating the pad initially, and
2) exchanging the pad.
Why not look at other possibilities, since this method has clear limitations?
No reason to limit research...
Now its clear to me: they were sending coded instructions to operatives in the field.
When they all leap onto the sofa at the start of the episode it truly means something.
Now if only I could get a look at the decode manual . . .
I was sitting outside and saw all the blades of grass swaying in the wind before me. I noticed how some were shorter than others, and that they actually didn't all have the exact same color. I thought if I assigned a number to each of these and several other characteristics, I'd be well on my way to unbreakable encryption.
My dad used to be a pretty famous rodeo clown in the 60s and an alumnus of the college I'm attending, so when I approached the board of trustees for approval for my research, they were ecstatic! They gave me $20,000 to conduct my research. Now I will be busy all summer observing the grass swaying in the wind. I plan to have a prototype ready at some point, I hope.
"Since you don't know what any of the values are mathematically, [a hacker] can't solve it," says Robert E. Kauffman, who is a senior research chemist at Dayton and Jason Kauffman's father. Robert Kauffman formed a partnership with his son and the university to patent the idea. The Kauffmans are reluctant to go into more detail about the idea because it's in the patenting process.
Cryptography based on a hacker "not knowing" something can be in for quite a surprise. And there is not even a hint here that this technique is based on a mathematically sound formula that is "hard" to solve. Perhaps this guy is on to something, but this attempt to talk about it but at the same time claim they can't talk about it yet leads me to believe this is more of an exercise in hype or ego than anything scientific. Cartoon cryptography might turn out to be a fitting term for it.
I'm an American. I love this country and the freedoms that we used to have.
Generating the initial pad is not much of a problem. You generally have to do something very very stupid to get your generation method reverse engineered. More than that, a property of any public key encryption method is that it can be changed into a very sucky key gen program that is still harder to reverse engineer than it is to break the original public key encryption.
Your number two is the reason for public key crypto.
So now I can encrypt animated pr0n in japanese anime...oh wait...
This
Is this really new? See Sherlock Holmes The Adventure of the Dancing
Men
But it's hard to criticize or admire whatever technique this guy is looking at, because there are no details in the article. (zero-knowledge reporting?)
A few points here:
It looks like he's already working on taking people for rides.
At my next development meeting should I recommend we watch the Little Mermaid for inspiration on database design?
"Since you don't know what any of the values are mathematically, [a hacker] can't solve it," says Robert E. Kauffman, who is a senior research chemist at Dayton and Jason Kauffman's father.
A senior research chemist, well holy smokes! This is the only freakin guy you could get for a quote on this new "unbreakable" cryptography system. What was the janitor at lunch!? Not only that, but its his father to boot, not to knock his extensive work in engine/oil products but come on!
Hey while we're at it...My 4 year old sister says that my newly developed RDBMS is 120 times more efficent than Oracle's, so now can I have the $20,000 to patent it, thanks.
This
Since any truly unbreakable encryption scheme has to use keys at least as long as the One-Time-Pad, I do in fact consider the problem of unbreakable encryption solved. No need for further research.
Of course, there's a lot of need for research into ciphers which are not mathematically provable to be unbreakable, but are more practical than the One-Time Pad. :)
Notice he's from the Mechanical Engineering Dept. and NOT the Computer Science Dept.
/me sighs...
I last attended UD only 3 years ago. Frankly, their CS dept was terrible (and I doubt it has gotten any better). They taught everything in Ada only up until about 5 years ago when they FINALLY switched to C++. Why you ask? Probably so they could send the programmers over to the Wright Pat Air Force Base... I mean, who needs REAL world programming skills? But that's just my opinion...
I started at UD in Electrical Engineering. UD has a great engineering school, but I eventually switched over to Computer Science. Had I been smart when I was looking for colleges (I should have realized I would switch over to CS almost immediately) I would have noticed that UD did not have a very good CS dept. Unfortunately, by the time I realized how bad their dept was, I was already entrenched. I had a co-op job (a very good one, where I learned far more real world skills than from my CS classes and am eternally grateful) and a great group of friends (most of which are living in Chicago with or near me today).
Half the teachers in UD's dept could barely speak English. They seemed smart, but you didn't learn anything because you spent more time wondering whether Dr. Pan was talking about Breakfast or the Breadthfirst algorithim.
Or maybe you sat in Dr. Gowda's class as he covered the same material for the 20th day in a row.
Or maybe you sat in Fr. Shane's class and were blown away by how smart he was (I mean, for Christ's sake he was doing binary and hexadecimal arithmatic in his head!), but were left wondering why he was relegated to teaching a class that was HALF 360 assembler and HALF C (yup, half a semester of C was all you got).
After that you went to Buckley's file systems class (which was really nothing more than a Cobol class that talked occasionally about file systems). Buckley was so scared of the class, he could barely write on the chalk board. I don't think the guy ever looked anybody straight in the eyes the whole semester! How can you teach a class like that?
And let's not forget Dr. Winslow's class where you got so many points taken off for not capitalizing your variables that your average grade on your assignments was 40%.
Finally, to finish things off, you ended up having to take the Networking II course (even though you REALLY wanted to take that Computer Graphics or AI course) because the schedule was such a cluster fuck, classes you HAD to take (like the Computer Ethics course) were only offered once a year and scheduled at the same time as the classes you wanted to take. This was after having taken Networking I which was taught by an Engineer, and had 5 engineering graduate students (out of about 32 students total) in it. So, of course, the guy taught the class to those 5 grad students (using Calculus which many of the undergrads hadn't even taken or weren't supposed to take) and the class average was a D (rumour going around at the time was that he got berated for it and the next semester he was the exact opposite, everybody got A's and the class was a joke).
That was my UD experience.
Now, that being said, I can only hope UD's CS department has gotten better. I doubt it, but you never know. Three years is a long time. The problem is, all the money the school made went straight to the Engineering school and the Law school. The rest of the school (especially the Business school) hardly ever saw a cent of it.
If you are considering UD, and you are considering an Engineering or a Law school oriented (perhaps Criminal Justice) major, then by all means go to the school! It's a fun time, it's got a great atomosphere, beautiful campus, and the Ghetto is probably one of the greatest student assets any college in the world has. If you are going there for something else, please do your homework first. If you look behind the facade you might not like all that you see.
On a related note, UD was one of the first schools to really push the internet as a learning tool if you read the media reports. Hah! I wish you could've been there when they were forced all incoming freshman to bring their own computers and then crammed three of them into dorm rooms that should have only held two. They did it because they couldn't properly run the computer labs (and/or didn't have the funds to do so). They wired the Ghetto, which was a nice accomplishment, but I never believed the reasons they gave for doing it.
That's just my opinion anyway... I only went there for 5 years. I could be wrong, but as always, don't make the same mistake as me. Make sure you know what you're getting into before you pick a college (and be honest with yourself, if you like Computers, make sure you go to a school that has a good CS dept, even if you're primarily looking for a different major).
I don't want it to sound like it was all bad, I had a great time at UD and I learned a lot (especially outside of the CS dept). I sometimes just regret my decisions, as I could have accomplished a lot more with my time at a different school. Such is life. Life is full of regrets and sometimes you just need to move on.
I made an encryption alg which is completely unbreakable. It uses numbers. I got the idea from mathmaticians while studying numbers. Holy FUCK ain't that keen?! Let's make a news story about it. Nah, just use what I just told ya.
-- 'The' Lord and Master Bitman On High, Master Of All
.... Ren n Stimpy password :D
----- Whats wrong with this picture? http://www.revoh.org:1234/whatswrong
From the article reporter: "An unlikely combination of interests -- cartoons and math"
Um. Has this guy never met a math or science student before?!
Sounds like he thinks this is a one-way algorithm - the numbers drive the characters movements, but you can't determine the numbers from just looking at the end result. Or so he thinks.
.. once http://lavarand.sgi.com/, now: http://www.lavarnd.org/
Don't answer me. Moderate. Slashdot is about moderation, not discussion.
Jason finds way to recycle used oil
gives a more technical view of the current discovery (its a prng by the way)
-=DaveHowe=-
1) Generating the pad initially, and
2) exchanging the pad.
1) Generating the one-time pad is easy with a hardware noise generator such as an avalanche diode. Marx makes a USB dongle that has a true white noise generator. Just pump the noise into a file, walla!
2) Exchanging pads is not needed, as the one-time pad can be used in a symetric scheme, just a simple XOR will do fine. You only have to transfer the pad one way. Unfortunately, that is a problem that has no good solution.
Yup, all the tell-tale signs are there:
My guess is, he found some "smooth noise" generator and thought that it would make a good source of "random numbers", used, e.g., as a key schedule algorithm, and as soon as the patent is published (which it will be, thanks to the dumb patent office), it will be broken (it probably has a short "key" to set initial conditions, which will be easy to break) and this guy will be forgotten.
Though the cartoon connection is kinda cute and might get some press attention.
Next?
Specifically, we have the unbreakable claim warning sign, and even more specifically, this is almost certainly one of the one -time pad errors: There's also the technobabble, secret algorithms, and revolutionary breakthrough warning signs.
I hope they enjoy the $20,000 patent, 'cause it's not worth the paper it's printed on.
We can come immensly close to it, but if data was to move from human readable to encrypted and back to human readable, than at some point it had to be decrypted, and if it can be decrypted it can be broken. It doesn't mean that the chances of it being broken are immensely small, but the chance is still there. Espesialy if the randomness is generated by computer, I have yet to see a random generator scheme for a computer that doesn't have some sort of formula to it. True randomness is very hard to come by.
T Money
World Domination with a plastic spoon since 1984
I wondered about the article -- being so scanty on info needed to evaluate Kauffman's claim -- and then sent searching online for the patent application. The cos site was a pay site, offering searches for US$250/yr for individuals. Screw that. I went to uspto.gov and then here within it. I did an "advanced" query for Kauffman's name on published patent applications; the query string was "in/Kauffman or in/Jason", the years were "2001-2002". I got 411 results -- too many. Dunno why I used "or" -- so I reduced the query to just "in/Kauffman", which got me 15 results. I went through any that even remotely could have to do with numerical processes, but none were from Jason Kauffman.
Hmm.
[also misbehaves on Kuro5hin as Peahippo]
Check out One Time Deck: the world's most wasteful encryption scheme. The key size (in expressible values) grows with the factorial of the message size (also in expressible values, not bits).
Basically, your key is the equivalent of a randomly shuffled deck of cards with each possible messages written on a card. Your ciphertext tells where to cut the deck to find the card with your message on it. Each deck is used for only one message, then destroyed. Hence the name.
It has the interesting property that if you don't have the deck, even if you know the plaintext exactly, any changes to the ciphertext will result in a completely random plaintext (except that it's not the same).
Anyways, since you don't want to become bored while watching the grass, i've got some green "equipment" you might find handy. My pager number is .... oh fuck, the Feds........
I have this vision of an FBI agent watching tons and tons of porn in his cubicle. The boss comes by and starts scolding him. He then says:
"Please calm down. It is possible to hide secret messages in images now. Here is a printout of a slashdot article about it. I am just looking for hidden terrorist messages in this porn found on Al-Quida PC's. I think her breasts are jiggling to a descernable pattern, so I am trying to plot the jiggle pattern here."
Boss: "Then why are you sweating like that?"
Table-ized A.I.
Sounds like the first intelligent thought spawned by a Disney product in 40 years.
A calls his counterpart B (shielded line), and says "Demon Tit Wonderful hentai, episode 5, x bytes!". A xors his file with the divx file and sends it to B. B gets the hentai from Kazaa and xors the data with it. Unbreakable (except for that shielded line of course)!
I choose to remain celibate, like my father and his father before him.
seed rand() from user input
while !EOF
read a char
print char ^ rand()
("^" is xor)
We all did this when we were kids.
You might also add a hash function like:
print char ^ rand() ^ (lastin * lastout + lastin *lastout >> 8)
( ">>" is bitshift)
There now it's data dependent, totally unbrakeable
A variation is using + instead of ^ but then you need a corresponding decryption algo with -
Suprisingly many people make the same algo(or similar variations of it) independently.
FRA: STFU GTFO
While not exactly the same, this still seems reminiscant of Jonny Mnemonic, where the information stored in his head is locked away by 3 images, which are the key.
0110100100100000011000010110110100100000011000100
And I heard if you watch the Lion King with special "bin Ladin" glasses you can see the Twin Towers falling as soon as Simba watches his father die.
Snow White was used to plan the attacks....
Sheesh
Get your Unix fortune now!
it's not Hentai Anime, it is actually important encrypted company secrets
...not encryption.
I'm glad you have the maturity to get the support of someone older, wiser and more experienced than you to evaluate and endorse your efforts.
This was the method they used to encrypt the data in Keanu's head in "JOHNNY MNEMONIC".
"Algorithm or product X is insecure"
From the other article:
Companies that require high levels of computer security currently use either a DES (Data Encryption Standard) or a triple DES code, but the Kauffmans say both are breakable.
"The currently used DES encryption method, which is now being replaced by AES (Advanced Encryption Standard), was once thought unbreakable and can now be cracked in a matter of minutes to hours," said Robert Kauffman, who helped his son write parts of the computer program. "The AES also can be cracked in theory. These algorithms have computational security, which means they can be broken if enough time and computer power are used. AES would take hundreds of years to break with today's supercomputers.
FRA: STFU GTFO
It may be little information, but mathematically enought to say it's no longer unbreakable.
You might as well claim the same thing if the attacker knows that the plaintext is sensible ASCII-encoded English. That the attacker knows the character of the plaintext (and therefore has a wealth of statistical information about the plaintext) is one of the fundamental assumptions of cryptography.
The perfect secrecy of OTP is based on the secrecy and randomness of the key alone, it doesn't require an obscure or disordered encoding of the plaintext. Knowing some key bits gives you no clue about the value of other key bits.
Of course you must account for the information that can be inferred from the length of the ciphertext (and pad your plaintext to avoid any information leak). This problem is no greater or worse for compressed plaintexts than uncompressed ones.
It seems to me like having the first and last number the same doesn't compromise the security of the message one bit!
It compromises the security of the message exactly one bit (assuming that it's binary OTP). If the first and last bits of the ciphertext are the same, then you know that the first and last bits of the plaintext are the same, and vice versa. You gain one bit of information about it, and cut the number of possible plaintexts in half.
Cryptanalysis is based on statistical data. The attacker presumably can make reasonable guesses about the contents. So if they can guess the first bit with 70% probability, they also know the last bit with 70% certainty.
This kid could really use a copy of "RSA Laboratories' Frequently Asked Questions About Today's Cryptography" or "Applied Cryptography" or even "PGP DH vs. RSA FAQ". At the University of Dayton page on this discovery (https://alumni.udayton.edu/np_story.asp?storyID=7 84), he says that Triple-DES could be easily broken.
That is complete B.S.
Triple-DES is a 112-bit algorithm, and perhaps even stronger that Rjindael (AES), since it's been subjected to rigorous cryptanalysis for many, many years.
It seems as if the encryption technology might be secure, but without any information on it, I am very skeptical.
I wonder if his dad's engine oil invention was "Slick 50" - about as snake oil as it gets.
Yeah. I'm also confused why anyone would want a "personalized" crypto algorithm in the first place.
Scrambling your algorithm to prevent brute force attacks is just stupid -- you could get far more security against brute force attacks by simply adding a single bit to your key-length. And unless all of the variables were relatively prime in any case you couldn't guarantee a single solution.
I think his "unconditional cryptography" translates in this case as "I still need to read Schneier and Koblitz and study number theory".
Just get out some paper and pencil and start tracing!
Jesus H Fucking Christ!
... I might was well get my geek news from CNN.
Random numbers -- unbreakable encryption -- no alarm bells going off in your head? Here's another word to help: "One Time Pad". Still not there?
Endorsed by a motor-oil inventor and some hick university? You people seriously do a disservice to the geek community reposting obvious bullshit
does this remind anybody else of Johnny Pneumonic?
He claims his cipher cannot be broken at all, no matter how many supercomputers you use (unconditional security). That is complete rubbish. Any calculation can be reversed no matter how complicated. You just need some computing power.
I quote from the origina article:
"The currently used DES encryption method, which is now being replaced by AES (Advanced Encryption Standard), was once thought unbreakable and can now be cracked in a matter of minutes to hours," said Robert Kauffman, who helped his son write parts of the computer program. "The AES also can be cracked in theory. These algorithms have computational security, which means they can be broken if enough time and computer power are used. AES would take hundreds of years to break with today's supercomputers. Jason's cryptography has unconditional security and can be proven unbreakable. Supercomputers won't make any difference."
FLT, not just any theorem.
Somewhere around the start of the PGP User guide, none other than Phil Zimmerman was discussing snake oil. He mentioned how 1337 he felt when he "discovered" a whole new kind of stream cipher. Why not just get a PRNG, convert a key to a seed for it, and then XOR that with the bit stream? Little did Phil know that this technique had been "discovered" many many times before and was covered in all good cryptography books. Moral? If you don't have a PhD in number theory, don't even try it.
Note to M1-ers: a curt but otherwise insightful message is not "Flamebait" or "Troll".