Totally Secure Non-Quantum Communications?

An anonymous reader writes "TEES is reporting that Dr Laszlo Kish, an associate professor at Texas A&M, has proposed a 'classical, not quantum, encryption scheme that relies on classical physical properties -- current and voltage. He said his scheme is absolutely secure, fast, robust, inexpensive and maintenance-free and relies on simultaneous encrypting of information by both the sender and the receiver.' The scheme uses properties similar to Johnson noise along with Kirchoff's Law to provide what he hopes to be an easier method of secure communications. Arxiv also has the full text [PDF Warning] of the paper."

Credibility

[A+beautiful+mind]

"James Bond may use the fanciest, most expensive and high-tech devices to thwart would-be eavesdroppers, but in a pinch, the super-spy can use one Texas A&M engineer's simple, low-cost scheme to keep data secure from the bad guys."

This is the first sentence from the article. I'm sorry, but I cannot take anything in that article seriously. On another note the guy has an interestingly hungarian sounding name.

Re:Credibility

[slashdotmsiriv]

Read the academic paper (letter) not the announcement on A&M's site. The announcement is most likely not written by the good professor himself. The paper on the other hand, although it is a first draft and in the form of letter appears well written and substantiated. And a professor of EE in Texas A&M is a good enough title to provide credibility, I mean come on dude, we read hundreds of bogus articles on slashdot posted by ignorant journalists or wannabe patent owners and you raise an issue of credibility regarding a professor in one of the top 50 schools in the US?

Re:Credibility

[josecanuc]

The announcement is most likely not written by the good professor himself.

You're correct; the article was written by an employee of the communications department of the TAMU engineering program. The article was written for the "general public" audience. Also, the reporter him/herself is unlikely familiar with secure communication and quantum cryptography principles. The professor was interviewed by the reporter. He likely, either by choice or necessity, had to describe his paper in a context outside the normal EE academic research community for this type of research.

The resulting article is a result of both the professor simplifying his research and the reporter further simplifying it. We have someone who is not a professional communicator; he has to get the idea of his research across. (Not to mention the attempts to link to everyday-use applications that tend to garner interested readers and funding.) The reporter is a professional communicator who had to distill the professor's explanation down to the components of a good article (a catchy lead--James Bond, a hook--secure communication, etc.) The end result is something that most people can at least relate to; A TAMU professor has an idea about an easier way to have secure communications. However, those familiar with the topic, however in-depth or not, are left wanting to ask more questions.

Such is the life of an engineer/geek reading news articles.

But, as you (the Parent poster) say, the fact that one might be left wanting more answers does not mean that the professor's idea or research is bogus. Remember that there's a reason we have professional communicators -- they know what most people will understand and relate to.

Disclaimer: My wife works with the reporter who wrote this article.

Too much hype

[KiloByte]

his scheme is absolutely secure, fast, robust, inexpensive and maintenance-free

Haven't we heard this before?
Generally, if something sounds too good to be true, it usually is neither good nor true.

Implementation

[GigsVT]

This sounds very good in theory, but it may be difficult to implement securely.

For example, he claims an eavesdropper could inject current to measure voltage drops, but would be discovered on the first attempt. If the eavesdropped can send a pulse of current that is so small as to not be registered on the endpoint equipment (which say samples the line at 1X sampling rate), but the attacker is injecting and sampling at a rate 100X faster, the attacker's pulse will be so far above the nyquist bandwidth of the endpoints that they will never see it.

I admit I only read the abstract, he may address this later on in the paper.

Re:Implementation

[SagSaw]

...but the attacker is injecting and sampling at a rate 100X faster, the attacker's pulse will be so far above the nyquist bandwidth of the endpoints that they will never see it.

Keep in mind that the energy from the attacker's pulse doesn't just go *poof* and disappear. It will be aliased to frequencies within the bandwidth of the endpoint(s) and might still be detected.

How sensationalist ... absolutely secure, haha!

[Rodness]

This article (uses the words 'proposed' and 'absolutely secure' in the same paragraph. You can't trust such a claim about a proposed system until it's been implemented, distributed, deployed, and pounded on for years by cryptanalysists.

Oh, the sensationalism!

Re:How sensationalist ... absolutely secure, haha!

[osu-neko]

How would cryptanalysists be helpful here? You did read the article, right? About a way of making it impossible to tap communications without it being detectable immediately at the endpoints? Since the topic of the article has nothing do with encryption, I fail to see how having crypanalysists "pound" on it for years will help expose any problems...

Re:Voltage drop?

[GigsVT]

In this case you'd want to measure the voltage drop properties of the line to figure out what resistances were on either end.

Why must non-cryptographers be so dumb?

[khaydarian]

There's so much wrong with this, I don't know where to start.

First, Cryptography is hard. Even professional cryptographers with decades of experience still get it wrong -- often. Considering as this guy has essentially no previous experience (he's an EE professor), it's already near certain that he's dead wrong.

Second, he doesn't provide "absolutely secure" communications. He provides non-interceptable communications. He's totally ignoring authentication, non-repudiation, man-in-the-middle attacks, and half a dozen other very important problems. (It's also not a cipher, but we'll ignore that slip.)

He also assumes (from the abstract) that an eavesdropper can only eavesdrop by injecting current into the wire, which is blatantly false. One could easily tap the magnetic field generated by current in the wire, without drawing very much power from the wire at all.

And to top it all off, he's depending on the precise values of voltage and current, which means this is an analog system. Analog systems are notoriously difficult to build precisely -- which is why we're using digital everywhere.

This is such bad research that I can't wait until Bruce Schneier get ahold of this.

Re:Outdated and irrelevant

[osu-neko]

Eh? Much like quantum communication systems, this is aimed at providing secure point-to-point communications. Almost everything you said above is utterly irrelevant to the question at hand. It doesn't solve any of the problems you bring up because it isn't meant to. Moving to hydrogen powered cars doesn't solve problems of secure Internet communcations, either. That doesn't make them a step backwards...

Re:A lesson for venture capital

[ZachPruckowski]

Quantum Encryption is p2p. Which means when Bob and Alice trade IP addresses, Mallory would need to convince Bob that her IP is Alice, and Alice that her IP is Bob, which is tough. I mean, if you're trading sensitive info, you ought to be able to have each other's IPs.

Someone explain please

[karvind]

IT seems to me that they are assuming perfect channels which don't introduce random noise ?

FTFA: The way the eavesdropper gets discovered is that both the sender and the receiver are continuously measuring the current and comparing the data," Kish said. "If the current values are different at the two sides, that means that the eavesdropper has broken the code of a single bit. Thus the communication has to be terminated immediately."

And it also assumes that measureing equipments themselves are caliberated and identical (correct me if I am wrong on this) ? Why would anyone base a reliable equipment on "noise" which is random...

"Security by Obscurity"

[ratboy666]

Yes, again. The attacker doesn't know which resistor is at which end. And taps the middle.

Of course, the attacker may be the receiver, in which case she KNOWS the value at one end. And that is the trivial breaking case.

Ratboy.

Re:Would this idea defeat the system?

[kronocide]

If you are to guess a 50/50 state without any clues whatever, why listen in at all? You know it has to be a 1 or a 0, you don't need to actually be connected to the system for that. So just guess away. If it works, you have just cracked every conceivable system of encryption, and no tools or physical access to the message necessary!

As for "several thousand combinations"... After the first 32 bits of information you have 4,294,967,296 possibilities, so I hope you are a good guesser. :-)

Re:Outdated and irrelevant

[bpd1069]

How will returning to an analog-based "encryption" system work in the digital future?

It won't obviously, but we are talking about a future with quantum based encryption, no time for dogma in science...

An alternate path to that future has been proposed. To dismiss it off-hand is what kept people in the Dark Ages.

Re:Pinch of NaCl

[Mr.+Slippery]

Given this, if the sender and receiver consistently share the values they measure for the current at each step, over a public channel, they give away no information, but if there is an eavesdropper, they discover him/her immediately.

Ah. So if the sender and receiver and receiver already have a reliable method of communication, they can use that to prevent eavesdropping on this new channel.

Now, how do they get this reliable method of communication to check current measurements with each other, that is secure against a man-in-the-middle attack?

Re:Would this idea defeat the system?

[DrJimbo]

Eavesdropper wraps a wire around the communication wire, to measure the signal by induction. Would this be detectable? Or would this allow undetectable interception?

Yes, that would be detectable. For the same reason that we need a lot of falling water to turn the generators in hydro power plants. The energy (signal) in your wrapped wire does not come for free. It reduces the energy in the communication wire and is thus detectable.

Another way to see it: if the signal in your induction pickup were truly undetectable then we could wrap billions of similar induction pickups around the communications wire and generate electricity "too cheap to meter".

Technical discussion

[acaspis]

Suppose Eve inserts a resistor in the transmission line. Now she can measure two voltages instead of one, and I'm pretty sure the difference in standard deviation will reveal the choice of resistors at each end of the line.

If Eve fears that her resistor might be detected, she can use the intrinsic resistance of the wire instead. Unless we assume superconducting transmission lines...

Nice try, though. This is probably related to the issue of determining who is talking when eavesdropping on a two-wire telephone line.

AC

Re:A lesson for venture capital

[gweihir]

...so why consider quantum cryptography in the first place?

It is like speech recognition, VR, kitchen helper robots, ....

It does not make a lot of sense technologically, but you can get grant money for it easily, because it matches what nonexperts think computing should be able to do for them. Stupid, but very human.

I dunno--why are you?

[penguin-collective]

First, Cryptography is hard. Even professional cryptographers with decades of experience still get it wrong -- often. Considering as this guy has essentially no previous experience (he's an EE professor), it's already near certain that he's dead wrong.

He is doing cryptography in the quantum cryptography sense--a secure, non-interceptable channel--not in the algorithmic cryptography sense. He is well-qualified to talk about the kinds of systems he is talking about.

Second, he doesn't provide "absolutely secure" communications. He provides non-interceptable communications. He's totally ignoring authentication, non-repudiation, man-in-the-middle attacks, and half a dozen other very important problems. (It's also not a cipher, but we'll ignore that slip.)

Again, he isn't trying to do any of those things; he is proposing a way of creating a physically secure channel, in the same sense that quantum cryptography is.

And to top it all off, he's depending on the precise values of voltage and current,

Wrong again. He is proposing a system in which resistances are altered in steps. That's no different and no more analog than any other digital system.

This is such bad research that I can't wait until Bruce Schneier get ahold of this.

Unless Schneier is an expert on electronics, Schneier isn't qualified to say anything about this.

Yes, this guy's system probably doesn't work. But, really, your response is even dumber than his proposal.

Re:A thing about security

[GigsVT]

Wow, that's so wrong. I wonder who modded you up.

The best cryptographic and digital security is one that is very public, that has had many hundreds of people pounding on it for years trying to find flaws.

A secret system is likely to be broken as soon as someone more skillful than the designers learns of its existance.