Quasars Used for Encryption

space_mongoose writes "According to this NewScientistTech story, intergalactic radio signals from quasars could emerge as an exotic but effective new tool for securing terrestrial communications against eavesdropping"

so...

[gcnaddict]

We use really fast neutron stars which generate radio waves in order to encrypt our content?

So if someone has a list of all quasars and their radio frequencies, can't they brute force the message and break it in, what, 20 seconds?

Re:so...

The idea is that its impossible to record all of the transmissions of a quasar to retroactively decrypt a previously seen message (because the quasar is emitting 10^9 or 10^12 random bits/sec)

Re:so...

[B3ryllium]

The KGB used CBR (Cosmic Background Radiation) to produce reams and reams of codebooks/ciphers. They would create two copies, and dispatch one of the copies to the remote location for encryption, then keep one copy at Lubyanka Square.

Obviously, if one side of the cipher was intercepted, then the communication would be suspect - but for most communication, it was the most secure available to them. I don't see this quasar issue as being much different than that.

Now, if they were using quantum states to dynamically generate the ciphers in two seperate places at the same time, THAT would be something to behold.

can't btute force - intractable amount of data

[lordcorusa]

All one time pads are recorded from random data. You record a long stream of truly random input, then make two copies of the recording. Tne sender gets one copy, the receiver gets the other. Starting at the beginning of the pad, the sender uses each bit of the pad exactly once, then discards it. When the sender runs out of bits, he can not send any more data. The receiver decrypts decrypts likewise, discarding each pad bit after it has been used once. As long as the sender and receiver start with the same pads and don't skip or reuse any bits, they stay in syncronization.

Many perfectly good one time pads are drawn off of data "that anyone can record." For example, many pads are created from atmospheric noise. Anyone can record the same data, but unless you know exactly where and when the recording was done, it is computationally infeasible to record all possibilities, let alone brute force them.

There are many, many quasars that we record in the sky. All of them give off constant streams of random data. So it would be computationally intractable to record all possibilities or brute force a particulr message, because the attacker would have to know exactly which quasar was recorded, and exactly which instant the recording began. He would also have to know exactly which bit of the pad the sender was on when the sender started sending the message that he intercepted. All theoretically possible, but computationally intractable.

Re:can't btute force - intractable amount of data

[Baki]

the length of the "one time pad" is large, but the number of them available? I mean the number of quasars that are good enough receivable to use for this purpose. I have no idea, but I doubt if its more than 2^32. In that case, brute force would be quite easy: just try each of the available quasar signals.:

Record the signal of each of them at time T, also record the encrypted message at time T, and try them all out in a fast computer. Then you'll know which one you need to use for the rest of the encypted source.

The number of real "one time pads" is much larger, given a decent random generator. But indeed their length is shorter, which is also good since using a one time pad for a very long time is not good if the one time pad somehow leaks.

Re:can't btute force - intractable amount of data

[Raphael]

The length of the "one time pad" is large, but the number of them available? I mean the number of quasars that are good enough receivable to use for this purpose. I have no idea, but I doubt if its more than 2^32. In that case, brute force would be quite easy: just try each of the available quasar signals.:
Record the signal of each of them at time T, also record the encrypted message at time T, and try them all out in a fast computer.[...]

Well, you have a big problem with your time T. How do you know it? If you do not know the source (which quasar is used), it is also unlikely that you know the exact time T used for the start of the random stream. It is unlikely that you know it with a better precision than a few seconds. If the two parties do not exchange messages frequently or do not re-negociate the start of the random stream frequently, then you may not even know T with a precision of a day.

The NewScientistTech article does not give details about the amount of data available from the quasars, but other articles mention that quasars are typically observed in relatively high frequencies (20-40 GHz). Even if the signal strength is sampled with a low resolution and only a few truly random bits are extracted from the stream, you would still have a stream of bits that is in the Gbps range. This is a reasonably large amount of random data.

So even if the number of usable quasars is rather low (say, a few thousands: 2^10 instead of 2^32 as you mentioned), you would need a lot of antennas and petabytes of storage to record all these random streams. You would have to store something in the order of 2^40 bits per second for several seconds or even days (the uncertainty on T). This is not impossible if you have a large budget, but this is difficult and expensive.

It could even be much worse than 2^40: a recent catalogue of quasars from March 2006 mentions 85221 of them, with new findings doubling this number every second year: 48921 in 2003, 23760 in 2001, etc. Let's say that 2^15 of them are usable (and that you have 2^15 antennas at your disposal). If the signal strength is sampled with a medium resolution of 8 bits at a frequency of 30GHz and your uncertainty interval on T is about one hour, you would need to store 2^15 * 2^3 * 2^35 * 2^12 = 2^65 bits of data before starting your brute force attack. Good luck!

Once you have all this data, you still have to do the brute force attack. You wrote "just try each of the available quasar signals." This is correct but you ignore the fact that the random stream is unlikely to be used as is. It will probably be used to seed a stream cypher. In the simplest case, the random stream would be hashed a couple of times before being xor'ed with the data. You will need a huge amount of computing power to perform all these operations and try each of the available signals at each possible time offset.

Note: it is unlikely that both parties can get the signal and be synchronized with a nanosecond or picosecond resolution. So they would probably negociate a time window (say, with a resolution of one second or so) and some kind of unique marker within that time window in order to know exactly when to start. If you are the attacker and you cannot know which source is used, you probably do not know the time window nor the marker. But even in the unlikely case that you would have a way to obtain one or both of these, you would still have the problem of storing the huge amount of data from all quasars until you know which part of it should be analyzed.

So although a brute force attack based on recording all qasars is not impossible, it is not really easy. And anyway, my first reaction when I started reading this story was exactly like the comment mad

Re:Hmm

[thePig]

For one thing they are just using the data to create random numbers .. i.e. all.

Logic being that, any random number we create is *not* random. i.e all.
And most (all??) encryption (RSA onwards) is based on random numbers.

Even if there is only one quasar the freq of the signal at any time would be very random indeed. Even if it is as created using known scientific functions, chaos theory predict that we wont be able to regenerate the same any time soon.

For that matter, they could even use any of the natural process to generate random numbers -
Amp of any specfic freq from our dear sun, to , say the power of wind blowing outside itself, would make a good random number

They just chose an exotic one. i.e. all

uh

[sentientbrendan]

There doesn't seem to be anything special about a quasar here... essentially all they are saying is that large amounts of random data can be used for quick and easy one time pad encryption, which to my knowledge is unbreakable, although I am not particularly well versed in cryptography...

For those that don't know, the idea behind a one time pad is that your key is random, and the same size as the data being sent. For example, if binary data is sent, simple xor encryption can be used as follows

unencrypted data: 10110000
pad data : 10111001

xor the pad against the key and you get

encrypted data : 00001001

xor the same pad against the *encrypted* key again to get

original data : 10110001
tada

One time pads have two major problems
1. Both parties need the key.
2. The key is large, thus cumbersome to carry around and likely to be discovered.

Problem 2 can be solved, while losing some randomness, by using a popular book as the pad. Then you could just head down to the library and check out catcher in the rye, or whatever book you agreed upon beforehand, and begin decoding.

I suppose that this could be used in conjunction with public key cryptography, so that public key cryptography is used to encrypt the coordinates of the quasar you want to use... but I really don't see why you need the quasar at all. Also, aren't there only 12,000 of them visible? If this technology became widespread and quasars were persistently used as sources of random data... someone with enough resources could just monitor them all and decrypt any data transmitted by checking it against all the data received from pulsars at that time.

Re:uh

[Threni]

>unencrypted data: 10110000
>pad data : 10111001
>
>xor the pad against the key and you get
>
>encrypted data : 00001001
>
>xor the same pad against the *encrypted* key again to get
>
>original data : 10110001

The final step is to subtract 00000001 from the decrypted data...

Lava Lamps

[spiralscratch]

What, lava lamps aren't good enough anymore?

One time pads

[Beryllium+Sphere(tm)]

They are indeed unbreakable, with a theoretical proof of unbreakability -- in the land of spherical horses, where you're allowed to make huge assumptions.

One underappreciated assumption about one-time-pads is that the recipient will (and can!) destroy the keying material after use so thoroughly that the adversary can't reconstruct it. There are several other issues, of which key distribution is one of the easiest. Just put a 500GB external drive in the diplomatic bag once and you've covered communications for a long time.

Here's the problem. The only things secret here are which quasar (13, 14 bits of uncertainty), when the sampling started (?? There won't be very many possible seconds that the adversary has to scan but sampling could start on a fraction of a second), and the sampling algorithm (but you have to assume in crypto that the adversary knows your algorithms). It's going to be easier to brute-force than a 6-word Diceware passphrase unless atmospheric effects somehow make the quasar signal look different everywhere on earth.

Re:One time pads

[jamesh]

Additionally, there may be filtering of the signal to select various frequency ranges, which would change the random sequence it produced (although may not matter if you could capture the whole signal anyway, but you'd need to know it to actually do the decryption)

Anyway, once i've figured out all the parameters, all I need to do is send a box away from the origin of the quasar faster than the speed of light, so that it can effectively go back in time relative to the signal and capture it.

I believe that this will be the big outcome of faster than light travel - breaking quasar keyed encryption.

(kidding of course :)

so how is this better...

[mu22le]

...than using the noise from your soundcard disconnected mic?
It is just as random and does not require a radiotelescope the size of a small house...

Re:so how is this better...

[Raphael]

using the noise from your soundcard disconnected mic? It is just as random and does not require a radiotelescope the size of a small house...

There are two problems:

• It is not just as random. The electrical noise amplified by your soundcard may be influenced by what you are doing on your computer, for example.
• It does not allow two parties located far away from each other to get the same signal at the same time (or almost the same time). The nice thing about quasars is that anyone on Earth or in space can record their signal. Your soundcard is tied to your machine and cannot be used by anyone else.

Having a source of noise such as a disconnected sound card or a CCD sensor in a black box can be useful in cryptography if you want to generate truly random bits. But this is not the only thing that this article is about: the signal from the quasars can be received by both parties, which provides a good one-time pad.

Quantum entanglement?

[CrosbieFitch]

If Quasars are correlated photon emitters, then perhaps they can be used for encryption in the same way as quantum entanglement is used already?

All you have to do is ensure that both commnuicating parties sample ENOUGH of the particles arriving at earth, and presumably enough of them will be entangled such that any other observer would have a statistically observable effect on their communication, i.e. detectable as an interceptor.

OK, that's sounds hopeless.

How about if there was one day found to be a way of communicating via entanglement? Then perhaps quasars might well be great sources of entangled particles.

Remember, science is not advanced by claims of "Impossible!", but by "I wonder if..."

Re:Hmm

[dmatos]

From the article:

Umeno believes astronomical cryptography could appeal to anyone who requires high-security communications. He adds that the method does not require a large radio antenna or that the communicating parties be located in the same hemisphere, as radio signals can be broadcast over the internet at high speed.

Basically, he just wants to use the quasars as a source of true randomness, instead of /dev/random, which, although influenced by random events, is largely computed using pseudo-random processes. The data stream from each quasar would be broadcast from a single collection point for all to use, but this to me brings up trust issues. Would you trust that single point of contact? Additionally, with enough horsepower, someone could simply record the bytestream coming from the quasar, and perform an off-line brute-force attack on any encrypted data with relative ease.