Crypto with Epoxy Tokens, Glass Balls and Lasers

Anonymous Coward writes "Scientists from MIT and ThingMagic have collaborated and developed an innovative crypto mechanism using epoxy tokens, glass spheres and lasers. They have actually created a physical one-way function that cannot be tampered, copied or faked! The full scoop can be found at MSNBC, and also at Nature, & TOI."

Remember the SGI Patent? #@ +1; Informative @#

for random numbers with

Lava Lamps? Now there is Lava lamp cryptography.

Read about it at:

LavaLamp

Thanks and have a weekend !

Re:Remember the SGI Patent? #@ +1; Informative @#

[lukegalea1234]

I remember a story some time ago about a linux application that rendered ansi text from an image.

There was talk of pointing a web cam out a window onto a busy street or point it at a lava lamp in order to generate a constant stream of seed data for encryption.

Old Technology, new twist

[lynx_user_abroad]

IIRC, something similar to this (very low tech) was used to create tamper-evident seals on things like the boxes guarding equipment monitoring nuclear sites, etc.

I think the process involved mixing a bunch of little tinfoil sparkles into a clear epoxy resin, applying the resulting glue as a seal, and photographing it from several angles. Simple to create, yet darn near impossible to duplicate a second time. If the blob is missing or different, something fishy is going on.

Re:Old Technology, new twist

[Phil+Wherry]

A very similar technology been used for the identification of gems for quite a while. The idea is pretty much the same: shine a laser beam into the gem, then record the pattern generated by internal reflection/refraction. The technique has been around for at least twenty years, I believe. Still, the idea of a physical one-way hash function is interesting and quite likely useful.

Re:Old Technology, new twist

[dr_dank]

An even older application involved wax seals for letters.

Candles of different colors were dripped onto the envelope to create a swirl of color that can't be as simply duplicated as a single color wax seal can. The picture of the multi-colored seal was sent ahead to verify the authenticity of the seal.

Re:Old Technology, new twist

[patniemeyer]

I believe nuclear materials are safeguarded using a similar system. A bundle of fiberoptic cables is used as a "chain", with the ends somehow twisted and locked. The twisting has the effect of breaking some of the cables in a random pattern that can be verified or monitored continuously by shining a light through the bundle. Presumably any attempt to remove the cable (or cut it) would alter the pattern.

Neat.

Pat Niemeyer

Re:Old Technology, new twist

[theCat]

In the Middle Ages when you made a contract with someone it was written twice on the same parchment, at the top and at the bottom. Then the parchment was torn in half unevenly between the two versions of the contract and each party took one of the halves. In the future should the terms of the contract come into question they could verify that the contract each held was in fact the original by realigning them along the tear; the originals would of course match exactly and the veracity of the copy contained therein could be verified.

The jagged edge of the contracts looked like teeth, Latin dent IIRC, and whoever held such a contract was said to be indentured

Didn't require lasers, of course, but did require that the two parts be physically present and visually verified, so it is remarkably similar in principle. The fibers and surface imperfections of the parchment (thin leather) would have taken the place of the glass beads in this case.

So, does the MIT patent fail due to prior art? ;-)

Re:Old Technology, new twist

[God!+Awful]

The disadvantage of this approach is that for these devices to be useful at say a supermarket, the master key still has to be stored on a server somewhere. If someone hacks the server, they can then impersonate you.

The advantage of this approach over other physical authentication techniques such as biometrics is that you don't have to trust the scanners. With fingerprint readers, once they scan you they can then store your fingerprint and impersonate you. That doesn't seem possible with this new approach.

Of course for pure theoretical security, it still doesn't match a smartcard with an RSA key encrypted with a strong 128 bit password that the user has to type in every time he wants to use the card. Unless you want to embed the smartcard inside a refractive epoxy for the best of both worlds.

-a

So what, that's only half the picture.

[brunes69]

Getting the 2D pattern is easy (anyone with access to a reader could simply get this pattern through software). You then have to manufacture a crystal which produces this pattern, so that you can use your new counterfit card at the Sony store, etc. This is the part that is currently impossible.

Re:So what, that's only half the picture.

[brunes69]

OK, so in theory you make your whiz-bang holo-emitter card (try to explain you you plan to emulate diffraction patterns generated by a laser through a crystal). Let's say you do this and it works. Now you go give your whiz-bang card to joe schmoe at the local best buy to get a tv. Woah there cowboy, whats this big black thing where the crystal is supposed to be?

No one would accept this emulator card you speak of, even if you could make one, which I doubt. And such emulator card would probably not fit in any ATM either.

Why are holographs prohibitive?

[Christopher+Thomas]

The article claims that making a holographic forgery would be prohibitively difficult, but doesn't explain why.

You could almost certainly make one if you had the original card to duplicate.

If you had the verification information for the card - the list of patterns the scanner looks for - you could probably make a holographic reproduction with a bit of fiddling (the same multi-exposure technique is used for making aminated holographs that move as you change viewing angle).

You'd have a hard time duplicating the card just from observing one transaction, but the same holds true for electronic media (one challenge/response pair does not give you a smart card's key).

Does anyone have further details on why the researchers say this would be difficult to forge?

Defeats one of the purposes of smart cards

[John+Harrison]

One of the nice things about a smart card system is that it doesn't have to go onlne for each transaction. From the descriptions it seems that this system does have to check with a database at the time of purchase. So the speedup from a smartcard is lost.

Something similar speculated on in 1920's sci-fi

series called the grey lensman by E.E. "doc" Smith IIRC. Law enforcement was struggling to find a non-forgable form of ID, and one of their failed attempts was a 3D crystal. Interesting that this idea has been around that long.

Very old news

[nagora]

This was suggested in an issue of Scientific American sometime back in the mid or early 80's. I remember it because I stole the idea to apply to my Traveller campaign to reduce the number of stolen space ships.

The idea was that the hull of each spacecraft was coated in embedded diamonds (cheap in the future because DeBeers' monopoly is gone). The police can then read your hull with a laser from 1 million miles away and you can't forge the "number plate".

TWW

Re:Obvious circumvention scheme

So what? They will use how many, ten angles? To minimize the storage, computing power and hardware needed to read the card. I doubt there would be billions of possible angles to make "check out all angles" reverse engineering impossible.

It's a neat idea, but so are fingerprint / iris readers. Unfortunately, because businesses want cheap devices, you can fool them with household equipment.

Re:Obvious circumvention scheme

[micromoog]

All the device would need to do is check at least two angles simultaneously. No 2D forgery can bypass that.

one way functions

[owenomalley]

The article seems to be missing the point of one way functions. If you don't change the inputs to a one-way function, it is exactly the same as constant (ie. no good for verification of anything).

An easy application is for keys. If the lock has N input/output pairs recorded, getting in with a fixed example output would be hard.

A more advanced use of these things would be to have some way standard way of encoding a bill of sale including a datestamp into bits that could drive the laser inputs. Then save the resulting pattern(s) as proof that the vob was there at the time of the transaction.

However, that leaves a major hole. If the user destroys the vob, the store can no longer check if the signature was valid. To combat this, the user needs to be identified at the time of the transaction. As long as the vobs are registered in a central identity server so that the store can make sure the person is who they claim to be at that point. Additionally users have to record lost or destroyed vobs. The central identity server could use the N known input/output pairs to authenticate the user.

Re:Impossible to Compromise?

[skeedlelee]

Insightful! Yes... I went in and read the actual article (in Science, with subscription, sorry), as a result, here's a rather verbose response. You're pretty close to what the original authors actually propose in the article. Essentially, the fob is just a rugged, cheap, light weight way of carrying around a zillion answers of ridiculous complexity to a whole bunch of simple questions. Before you're given a fob they would scan it at every angle, position and wavelength of interest, generating an enourmous number of possible questions to ask. Then they store the answer to all the questions. When you actually use the thing to make a purchase, a question is asked (ie. what do i get if I illuminate at X angle, Y position on the resin and with Z wavelength). A particular answer is given and compared to the stored answer. If it agrees, great. If not, try another. If it fails again, then it doesn't validate. The key thing though is that questions are never asked twice! As a result, the questions and the answers could be intercepted and stolen one by one and it wouldn't matter, as they could never be used again! When they run out of questions to ask (or get close) they have you get another 1 cent fob. The only real security problem I could imagine would be if someone cracked a reader and had it try to read all possible combinations while you were standing there. This would probably take too long to make it worth it. A partial read, well the theif doesn't control which question gets asked and if you have too many bad verifications, ie you're trying to use a partial read, they might drop by to check out your reader... Two other problems, if it gets stolen, you're SOL. Second, the reader is likely to be expensive, making it hard to use this to allow purchase authorization at home. So your problem... The problem with this is that the validation server would have to know what the right answers are to all of the possible questions, and that creates a problem: either there would be waay too much data stored for each card, or there would only be a limited number of "questions" the server could ask. The answer, a limited number of questions. This would probably be fine tuned to balance out the replacement cost, anticipated number of validations during the lifetime of the thing etc. Seems like storage might be an issue though. As far as the half baked work around everyone else seems to be proposing, reading the article helps. The only one which actually might work, reproducing the resin using the paired laser/heat harden resin approach might actually work at some point. But it would require having the fob in the theif's possession for so long that the original would probably have noticed as missing, canceled the old one and gotten a new one by the time it was ready.