Slashdot Mirror

← Back to Stories (view on slashdot.org)

EU To Counter Echelon With Quantum Cryptography?

Posted by simoniker on from the if-it-exists dept.

jfruhlinger writes "An article on Security.ITWorld.com seems to outline a coming information arms race. The European Union has decided to respond to the Echelon project by funding research into supposedly unbreakable quantum cryptography that will keep EU data out of Echelon's maw. Leaving aside the question of whether such a thing is possible, the political implications are troubling, indicating a widening rift within the Western world. Interestingly, the UK is part of the EU, but its intelligence services are among Echelon's sponsors."

20 of 465 comments (clear)

  1. What I do is.... by Kenja · · Score: 5, Funny

    What I do is send meaningless emails with high encryption to my friends in China. I figure that the NSA may as well spend countless CPU cycles finding out that I just installed the Guild Wars E3 demo rather then on important stuff.

    --

    "Have you ever thought about just turning off the TV, sitting down with your kids, and hitting them?"
    1. Re:What I do is.... by DynaSoar · · Score: 5, Funny

      "What I do is send meaningless emails with high encryption to my friends in China. I figure that the NSA may as well spend countless CPU cycles finding out that I just installed the Guild Wars E3 demo rather then on important stuff."

      I often enjoy sending such things are core dumps or font files (or maybe plans for a planet-buster nuke, I fergit) compressed twice using two different out dated compression programs (say, ARC on a PC and then ShrinkIt [NuFX] on an Apple II), strip off the archive ID header, UUencode it, strip off the leading cap M's, cut it in half, paste it second half first into an email, and send it with a subject line with likely Echelon trigger words, adding "PS: Call me for the key to decode this." If encryption is outlawed, only
      a8e3 5m0w s3k1 5d9k
      b7f2 7k1l c9r4 3yr5.

      --
      "I may be synthetic, but I'm not stupid." -- Bishop 341-B
  2. Unbeatable Encryption! by Anonymous Coward · · Score: 5, Funny

    In other news, a significant minority of people in the EU have already switched to an unbreakable real-time encryption technology, transmissible through the open air. External experts are at a loss; the NSA has made no headway whatsoever against this new threat.

    What is it? It goes by the name 'French'...

    1. Re:Unbeatable Encryption! by Shakrai · · Score: 5, Informative

      I think they chose that particular language because it had unique properties that made de-cyphering the language almost impossible. I'm not sure if they applied any additional encryption

      The Navajo Code Talkers. They didn't apply additional encryption per say but they had an interesting encoding scheme:

      When a Navajo code talker received a message, what he heard was a string of seemingly unrelated Navajo words. The code talker first had to translate each Navajo word into its English equivalent. Then he used only the first letter of the English equivalent in spelling an English word. Thus, the Navajo words "wol-la-chee" (ant), "be-la-sana" (apple) and "tse-nill" (axe) all stood for the letter "a." One way to say the word "Navy" in Navajo code would be "tsah (needle) wol-la-chee (ant) ah-keh-di- glini (victor) tsah-ah-dzoh (yucca)."

      Most letters had more than one Navajo word representing them. Not all words had to be spelled out letter by letter. The developers of the original code assigned Navajo words to represent about 450 frequently used military terms that did not exist in the Navajo language. Several examples: "besh- lo" (iron fish) meant "submarine," "dah-he- tih-hi" (hummingbird) meant "fighter plane" and "debeh-li-zine" (black street) meant "squad."

      You can also assume that they encoded the messages using standard military/common-sense methods -- i.e: referring to waypoints on a map that your enemy doesn't have access to. If he knows that you are going to attack at "Point Echo" but he doesn't know where that is the information is of limited use to him -- by the time he figures out where Point Echo is the information is out of date and it doesn't matter that he knows it.

      In any case the code talkers are an interesting (often ignored) fact of WW2, the recent movie notwithstanding. An interesting subject to read up on sometime.

      --
      I want peace on earth and goodwill toward man.
      We are the United States Government! We don't do that sort of thing.
  3. The interesting case of the UK by Rosco+P.+Coltrane · · Score: 5, Insightful

    Interestingly, the UK is part of the EU, but its intelligence services are among Echelon's sponsors.

    The UK has its butt sitting on 2 chairs. On one hand they sort of behave like a US state, with Tony as governor, and on the other as a half-willing EU member, in large part thanks to Mrs Thatcher. One of these days they'll have to decide which continent they want to be part of.

    And I have a feeling that, if the population has a say, they'll embrace the EU eventually. Of course, the population rarely has a true say in any country though...

    --
    "A door is what a dog is perpetually on the wrong side of" - Ogden Nash
  4. "The political implications are troubling"? by Saint+Aardvark · · Score: 5, Insightful
    I beg your pardon? Why the fuck are the implications of taking up cryptography to stop shady, shouldn't-be-happening-in-the-first-place eavesdropping by so-called friends and allies "troubling"?

    If there is a "growing rift" in the Western hemisphere, who the fuck do you think is responsible for this -- the ones who are pissed off about the eavesdropping and are trying to do something to stop it (and think for a moment about the fact that they're trying encryption rather than attempting to convince the US et al. that it's a Bad Thing...what does that tell you about their chances of actually convincing anyone to stop anything?), or the countries and intelligence agencies that decided this was acceptable in the first place?

    Sorry for the shouting, but this intellectual coyness does not become you.

    --
    Carousel is a lie!
  5. That sounds kind of silly by Noose+For+A+Neck · · Score: 5, Insightful
    While I'm sure it sounds well and good to a legislator in the EU when they hear about supposedly "unbreakable" quantum cryptography, this sounds like another case of someone mistaking it for some kind of panacea for eavesdropping. The real truth of the matter is that, of course, quantum crypto is only effective at the line level, i.e. as soon as it leaves the medium it was transmitted on, the cryptographic effect is lost. So it's entirely impractical for anything but a point to point connection.

    Also, I don't think people realize how strong cryptography is today. There are cryptographic methods available to the public at large (such as RC5 and PGP) that are proven to require more computing power than is theoretically possible in the universe. Not just more computing power than is possible with current hardware, but the theoretical limits of computation given the entire resources of the universe. So really, it seems that a lot of ignorance is at play here, and I would hope someone clueful in the EU informs their EU government before they go off and waste a whole lot of taxpayer money on such a foolish project.

    --

    Software piracy is victimless theft.

    1. Re:That sounds kind of silly by ca1v1n · · Score: 5, Interesting

      This is only true using a full-keyspace brute force attack. The NSA was at least 20 years ahead of the academic world in discovering linear cryptanalysis. This is why they asked IBM to change the sboxes in DES, but wouldn't say why. The result was that DES was using an sbox from a fairly small subset of possible sboxes that resist linear cryptanalysis, but we didn't know it for another couple decades. Imagine for a minute that the NSA had a technique that cut the effective key size by a factor of 4. You can brute force attack that. There might even be polynomial algorithms for it, taking advantage of mathematical properties that only the largest employer of mathematicians in the world knows about.

      We can't even be certain that the NSA doesn't have quantum computers, although this is less likely. When your attacker has a non-deterministic computer, you're fairly screwed on finding an algorithm that can be efficiently encoded and decoded on deterministic machines while taking extraordinarily long to decrypt without the key. The only saving grace here is that a quantum computer may not be a general non-deterministic machine, so there may be some things that a non-deterministic machine can do that a quantum computer cannot. To my knowledge, the equivalence between quantum computers and non-deterministic machines has not been proven either positively or negatively. I'm sure the NSA knows though.

      --
      WARNING: there is a trojan on your
  6. The UK's role in the EU by nickos · · Score: 5, Insightful

    As someone who lives in the UK, I think our stance on this is ridiculous, and a legacy of WW2. We're an important and influential member of the EU, and the last couple of years should have made it obvious that a close relationship with the US damages our relationship with the rest of Europe (and the wider world) and only benefits the Americans. In the post Empire world, Britain's role is as a democratic and decent European nation. We should not support pre-emptive war or the Israeli's mistreatment of the native Palestinians.

    Oi, Blair! Sort it out.

    1. Re:The UK's role in the EU by rduke15 · · Score: 5, Insightful

      A simpler statement might be that a good majority of the EU population are anti-American irrespective of what they do

      That is not true. Anybody who knows Europe will be able to tell you that the Iraq war made a huge difference.

      While before, a tiny minority was anti-American, it seems to have grown to the vast majority only because of the Iraq war. Anti-Americanism has now become so pervasive in the European society, that I even hear it in remarks from my kids. And they are at an age (8) when their views are ultra-conservative, and they would only express things that are shared by a significant majority in the school yard.

      Believe me, Americans are only fooling themselves if they ignore the damage this war (or this administration) has done to their country.

  7. Re:Quantum Encryption? by necama · · Score: 5, Informative
    The point isn't to use the quantum entanglement to directly pass information back and forth; rather it is to distribute a key for a one time pad. And one time pads are provably secure, since every different one time pad gives you a different (and equally plausible) decryption of the message.

    Hence, if you really want to gripe about the name, I suppose you could call it quantum key distribution.

  8. Re:What I find disturbing is... by GauteL · · Score: 5, Interesting

    True, it can't possibly be disturbing that the EU does not want the US spying on them after the US misused the trust completely during incidents like the Airbus/Boeing scandal.

    You can't possibly question the motives of a country trying to protect against spies from friendly countries, when those friendly countries actually ARE spying on them.

  9. Re:ummm... by Anonymous Coward · · Score: 5, Informative

    Sigh.. OK, it's a troll, but someone has to bite.

    a. Quantum crypto is invulnerable to a monkey-in-the-middle attack. Poorly implemented SSL is vulnerable to MITM during key exchange.

    2. It is widely accepted lore on the Internet, and strongly suspected by respectable people, that there exist quantum computing devices capable of factoring extremely large numbers. If this is true, any form of public-key crypto goes to shit.

    iii. Part of the problem with cryptography is that it does nothing to hide the source and destination of the data exchange. In theory, a secure quantum crypto system can't be tapped in the first place, so in theory, sender and reciever are anyonymous.

    IV. H.323 is for godless commies.

  10. Re:Uh oh... by theefer · · Score: 5, Funny

    If you don't consider Quantum Physics evil, you've definitely never been in a technical university.

    --
    theefer
  11. I don't see why anyone is surprised. by HBI · · Score: 5, Insightful

    In regards the US experience:

    WWI - the Belgian mistreatment was deplorable, but what drove the US into this war was the unrestricted submarine warfare and such stupidity as the Zimmermann note. There were no mutual interests really - Wilson tried to be almost quaintly fair in his peace terms which were summarily rejected by the rest of the Allies with their millions of corpses. Wilson came back, had his stroke, and that was it for internationalism in the US. Back to sleep...

    WWII - We stayed out of the war for three years. I'm not going to say there was no sympathy for Britain, but there was no desire to get embroiled in a war anywhere. Even the sinking of US ships in the North Atlantic was insufficient: it required the attack at Pearl Harbor to drive us to war. Even then, there was no real solidarity with Europe. There was a job to be done, an danger to be eradicated. We did this, and formed the UN in an attempt to deter future war. Based upon formulae agreed upon at Yalta and elsewhere, we occupied the former Axis and maintained some troop strength there, which would not previously have been a normal American thing to do.

    Cold War - The Cold War was once again fed by fear of Soviet aggression rather than any kind of solidarity with Europe. We assumed that fighting the Communists would be better done in Europe than on our own shores.

    Now, please note that these events were similarly perceived elsewhere -i'm sure no British patriot thinks that us taking a pass on WWII for 3 years while they got pounded was a good idea, for instance.

    My point simply is that US interests are not congruent with those of Europe and very likely never will be. Immediacy of threats has masked this for a long time , but it should not be mistaken. There never has been any kumbaya singing going on at either side of the Atlantic.

    --
    HBI's Law: Frequency of calling others Nazis is directly correlated with the likelihood of the accuser being Communist.
  12. How it came to pass... by Anonymous Coward · · Score: 5, Funny
    *** Schroder ( ~schroder!blinky@reichstag.de ) has joined #europe
    *** TOPIC: Be nice to the new guys or Ireland will export drunk hooligans to your country!
    <Schroder> Gutentag!
    <Blair> Cheerios, ol' chap!
    <Chirac> Sup?
    <Schroder> What's happening over here?
    <Chirac> Just watching zat goddamn idiot Bush trying to lose a war.
    <Schroder> Ach so...
    *** Bush ( ~bush!dubya@whitehouse.gov ) has joined #europe
    <Bush> I READ THAT, YOU BITCH!!!
    *** Bush has left #europe
    <Schroder> Right, this is getting tiresome...
    <Blair> Fancy a crumpet, anyone?
  13. Re:What I find disturbing is... by spun · · Score: 5, Informative

    Australia admitted the existence of Echelon, and it's part in the global surveilance network some years ago. The reason? The US demanded access to all data from Australia, whereas Australia wanted to remove the names of Australian citizens and businesses not under investigation. They would provide the details when asked, just not up front, to protect against the US using the info for corporate espionage. The Australians refused, the US said "Oh yeah, what are you gonna do?" and the Aussies responded, "Tell the world."

    Here's a link, but you can google 'echelon australia' for more info

    --
    - None can love freedom heartily, but good men; the rest love not freedom, but license. -- John Milton
  14. Secure Systems by BrownDwarf · · Score: 5, Informative

    The weakness in current encryption/communications systems isn't in the encrypting algorithms, which have withstood the serious efforts of some top-flight mathematicians to bust them. Nor is it necessarily in traffic analysis; keep a line open and transmitting bits 24/7. Isn't hard to design the system so the intended recipient can tell when the "random" bits start a message. Nor is the weakness in key transmission, at least for governments: lots and lots of really long keys can be transported on CDs well in advance of need. The weakness remains where it has been in recent years, with the people using the system, and with keeping their computers out of unauthorized hands. Going to quantum methods doesn't change get around this weakness. From what I see, the benefit of quantum crypto is the ability to make message tampering evident.

  15. Re:Sounds stupid... by Hobbex · · Score: 5, Insightful

    Perhaps, but then again, how many respected Nazi researchers believed that the allies had cracked the Enigma code?

    It was not unreasonable for them to have suspected so. The integrity of Enigma relied heavily on keeping the machines and codebooks out of allied hands - had the Germans known that the allies had managed to get ahold of those things, the impressive effort of Turing & co. to go the last bit would not have been inconceivable to his German counterparts.

    If the NSA can really crack any of our modern cryptographical methods, then they are at least forty fifty years ahead of the rest of world in both mathematics and computing. Is that conceivable? And if they are, then they can't really do anything with what they find anyways, since they would have to spend most of their energy keeping the secret.

    Basically you are trying to score cheap points (read karma) but making a comparison that doesn't hold, but that plays on peoples emotions. It's the equivalent of responding to any comment advocating avoiding war with: "That's what Chamberlain thought."

  16. Re:What I find disturbing is... by j.+andrew+rogers · · Score: 5, Interesting
    The majority of espionage conducted against the US is by our friends, largely from Europe. UK, France, and Germany being the major active players from Europe as I seem to remember. While it doesn't get wide press, the US catches (and then deports) several hundred European spies every year. How spies are treated depends on what country they are from.

    I remember over a decade ago when I actually worked in a business in which we were espionage aware, that the number one espionage problem in the US was the French (followed by the Chinese, and then a laundry list of European countries -- including the UK), the French being primarily interested in stealing US weapons technology and listening in on business deals they were competing with. Which was primarily a business move; along with the Russians and the US, the French are one of the world's major arms exporting countries and they have to compete with US designed weapons on the open market.

    Everyone spies on everyone, and for varying reasons. The French actually used to have one of the most aggressive intelligence services on the globe, disproportionate to their size and geopolitical importance, which some people find surprising. I don't know if it as large today, though. But this is nothing new, and all the governments understand that this goes on. As long as it doesn't get out of hand, it is tolerated between countries that are nominally friendly.