Slashdot Mirror

← Back to Stories (view on slashdot.org)

Totally Random One Time Pads

Posted by ryuzaki0 on from the random-is-as-random-does dept.

liliafan writes "Scientists in Japan have come up with a way of harnessing a truly random datasource for generating one time encryption pads: Quasars. One time encryption pads are widely accepted as being the most secure form of encryption, but this new technology from the National Institute of Information and Communications Technology makes the pads even more secure."

19 of 265 comments (clear)

  1. Dupe by TheComputerMutt.ca · · Score: 5, Informative

    This is a dupe of almost the same story from the same source.

    1. Re:Dupe by suso · · Score: 5, Funny

      So its not truely a one time pad then.

    2. Re:Dupe by koh · · Score: 4, Funny

      This is a dupe of almost the same story from the same source.

      If you had read TFA, you would know they use Slashdot feeds as an entropy source for their one-time pads. They do report problems though, since during a recent test run they noticed 42% of their one-time pads were effectively equal...

      --
      Karma cannot be described by words alone.
  2. Hmm... by fishybell · · Score: 3, Funny
    Where can I buy one of these new fangled quasars anyway?

    From what I hear, I'll probably be able to save on my heating bills too.

    --
    ><));>
  3. One Time Pads... by Anonymous Coward · · Score: 5, Funny

    Women have had those forever...

  4. So what? by rsw · · Score: 3, Interesting

    Getting randomness isn't interesting. Thermal noise is truly random, perfectly white, and easy to generate---it's as hard as passing a current through a resistor. Want more noise power? Avalanche breakdown, with appropriate whitening, works fine.

    Unless they've come up with an interesting way for two people in disparate locations to observe the same quasar and both independently observe the same random phenomena in a way which reliably and securely gives them access to the pad with no communication channel between them, this just isn't interesting.

    -rsw

    1. Re:So what? by homer_ca · · Score: 4, Informative
      Actually it's worse than that. From TFA:

      Each communicating party would only need to know which quasar to monitor and when to start in order to encrypt and decrypt a message.


      The name of the quasar and time to start monitoring are the cryptographic keys. That doesn't sound like a lot of bits in the keyspace.
    2. Re:So what? by interiot · · Score: 5, Informative
      The name of the quasar and time to start monitoring are the cryptographic keys. That doesn't sound like a lot of bits in the keyspace.
      Yes, but it's more secure than other keys, because the only way to attack it is to steal the keys before the time that the quasar is monitored. If an attacker discovers the keys afterwards, the key is useless.

      Also, the keyspace is larger than you think... the article mentions that quasars have a very broad frequency spectrum. So, #quasars (that are visible to both) X monitoring-time-choices X monitoring-frequency-choices may result in a large-ish keyspace (or, at the very least, means that it may be physically extremely expensive to try to decrypt a message against all possible keys).

  5. Xl6oUBY by Entropy · · Score: 5, Funny

    i147 F7b AIQzC9 7kXTA8TzJ Vl LcYxkN FXkCFA Ev4Lpwjk2 A0Jy7flvj phOlaTF 3S Z0uPk kP 5RKMkQ 5U5oZPW FzA f rj4FB 4vrI ZWr dovA6W l CS6

    --
    The sea changes color, but the sea does not change.
    1. Re:Xl6oUBY by Guppy06 · · Score: 4, Funny

      Mom, hang up the phone! I'm trying to play VGA Planets!

  6. not so sure about this by argoff · · Score: 3, Interesting

    I imagine someone who wanted to could buy enough equiptment to record all known quasar emmissions and store them
    or try them against encrypted data streams. A million quasars with 5000 possible frequencies each, wouldn't be that
    much for a computer to churn thru. In a way, it almost seems like security thru obscurity.

    1. Re:not so sure about this by kingkade · · Score: 3, Insightful

      The keyspace offered by a million quasars, 5000 possible frequencies, and an almost arbitrarily fine time sampling is pretty vast.

      The point is how do you get those parameters to the other party secretly? This is the same problem as giving them a one-time pad generated any random way. I think the point is that you can get randomness but the previous problem will always exist.

      --
      why run from Vincenzo?
  7. Actual advancement by flooey · · Score: 5, Insightful

    The summary for this article is a little misleading. One time pads aren't new, and good sources of natural randomness aren't new either.

    The interesting part of this article is the fact that quasars could be used as a natural source of randomness for one time pads, yet can be accessed by both parties simultaneously. The historical problem with one time pads (and the reason they're rarely used in practice) is that it's a huge pain to distibute sufficient random data to all parties involved in a communication. Being able to use a natural source of randomness that's available to everyone at once would be a major increase in the usability of one time pads.

  8. Finally! by loconet · · Score: 4, Funny

    ...harnessing a truly random datasource

    Wow, they finally managed to tap into my girlfriend's mood neurons?

    --
    [alk]
  9. How is this secure? by Zadaz · · Score: 3, Insightful

    How does this increase security? It's not like quasars are private property. Anyone can look at 'em...

  10. or IPKI by gadzook33 · · Score: 3, Funny

    Intergalactic Public Key Infrastructure

  11. Re:That's not randomness at all by Eric+Smith · · Score: 3, Interesting
    That's not randomness at all. It only seems random
    An interesting assertion, but without any backing evidence.
    they're confusing randomness with unpredictability
    There isn't any particularly better definition of randomness than "unpredicability". Some things are more unpredicable than others. Some things can even be proven to be unpredictable; for instance, the Blum-Blum-Shub PRNG has been proven to be unpredictable if you don't have a copy of its internal state, because it is mathematically intractable to derive the state from the output.

    It seems unlikely that it will become possible to predict the behavior of quasars as you suggest; we can't even accurately predict the weather on earth, which is a much smaller system than a quasar. For that matter, we can't predict the detailed behavior of a lava lamp, making that a reasonable source of random numbers (but patented!).

  12. Spiffy, but not news by Syberghost · · Score: 5, Informative

    This is a Vernam Cipher with a novel but impractical noise source. It was news when Vernam invented it in 1917, and maybe again in 1919 when he patented it, but this version solves an already-solved problem in a manner that would sound really good if Lt. Colonel Carter suggested it on SG-1, but otherwise is inferior to existing solutions to the same problem.

    Nothing to see here, folks; move along.

  13. Re:That's not randomness at all by howlingfrog · · Score: 5, Informative

    There isn't any particularly better definition of randomness than "unpredicability".

    That's true not just as a rule of thumb, but in a more formal sense as well. The word "random" is pretty hard to come up with a mathematically formal definition for, and "pretty hard" may mean "impossible" depending on your definition of "definition" (more on that later). To make things simple, let's just talk about sequences of ones and zeros. Take for example the sequence 01101110010111011110001001101010111100110111101111 ... Definitions of randomness from statistics and probability just require a potentially random sequence to have all possible subsequences of a given length appear with the same frequency. That is, 0 appears exactly as often as 1; 00 appears exactly as often as 01, 10, and 11; 000 as often as 001, 010, 011, 100, 101, 110, and 111; and so on. The sequence I gave above passes those tests with flying colors. But it's not random at all. I'll put some spaces in it, and you'll see the pattern: 0 1 10 11 100 101 110 111 1000 1001 1010 1011 1100 1101 1110 1111... It's simply counting in binary. The longer you extend the sequence, the better it does in statistical randomness tests--the first few dozen bits have a pretty strong bias for 1 over 0, but that ends up as noise in the long run.

    The relatively young field of information theory introduces the concept of "algorithmic randomness." The randomness of a sequence of bits is defined to be the length of the shortest Universal Turing Machine program which ouputs that sequence. In pseudocode, our example sequence is output by the program:

    let i = 0
    while (true) do
    output i
    let i = i + 1
    end while

    That's a comically short program to generate an arbitrarily long sequence. So the example fails tests for algorithmic randomness miserably. The fun part is that the problem of finding the shortest UTM program to generate a given sequence is provably intractable. Thanks to the the Halting Problem, you can't always tell if a given UTM program will halt or loop infinitely. All you could ever know is whether or not the program has output the desired sequence yet--if it's still running, it may do so eventually and then halt, it may output something else and then halt, or it may keep running forever. So algorithmic randomness plugs the holes in statistical randomness by trading an unreliably solvable problem for a reliably unsolvable one. You can't ever be sure a sequence is random, but you can sometimes be sure it isn't.

    I got off on a bit of a tangent there about information theory, but my point is that algorithmic randomness captures what we mean by "random" much better than statistical randomness. And algorithmic randomness is just a mathematically formal way of saying "unpredictable."

    --
    The original Howling Frog is a fictional character and has no UID.