Slashdot Mirror

← Back to Stories (view on slashdot.org)

$26 of Software Defeats American Military

Posted by CmdrTaco on from the cheap-at-twice-the-price dept.

reporter writes "A computer program that can be easily purchased for $25.95 off the Internet can read and store the data transmitted on an unsecured channel by an unmanned drone. Drones are crucial to American military operations, for these aerial vehicles enable Washington to conduct war with a reduced number of soldiers. '... the intercepts could give America's enemies battlefield advantages by removing the element of surprise from certain missions and making it easier for insurgents to determine which roads and buildings are under US surveillance.'"

46 of 534 comments (clear)

  1. IN soviet russia by Anonymous Coward · · Score: 5, Funny

    ...you observe uav

    1. Re:IN soviet russia by lorenlal · · Score: 5, Insightful

      Mods. That comment may be redundant, it may be old and tired, but it is certainly not offtopic. In fact, in the grand scheme of frist psots!, it might be the most on-topic one I've seen in years.

  2. but what are the hardware costs? by Anonymous Coward · · Score: 4, Interesting

    Well, demodulating an unencrypted digital signal is not news.

    I am more interested in what kind of RF equipment one would need to capture it off the air.
    It's not like you can do this with your WiFi card. ;)

    1. Re:but what are the hardware costs? by brusk · · Score: 5, Insightful

      No, demodulating a signal is not news. But not encrypting it in the first place ought to be. (And TFA had a red herring in its focus on the software used to record the signal--the software is probably the easy part, once you've captured the signal).

      --
      .sig withheld by request
    2. Re:but what are the hardware costs? by Anpheus · · Score: 5, Funny

      Turns out the drones use bluetooth. Just the other day my laptop asked me to sync to one when I was put a pringles can on the antenna.

      "Windows has found a MQ-9 Reaper, would you like to connect?"

      At this point I was (a.) terrified and (b.) glad that somebody with some clout was going to do something about the increased crime in the area.

    3. Re:but what are the hardware costs? by StatureOfLiberty · · Score: 5, Funny

      Let me guess. GA-ASI (maker of the MQ-9 Reaper drone) makes voting machines too.

    4. Re:but what are the hardware costs? by AlexiaDeath · · Score: 5, Informative

      Reading the information in the article and deducting from the software used, all you need is satellite internet card, satellite dish and the SkyGrabber, a bit of software that records anything video like it finds in satellite data stream. Pretty much off the shelf hardware for a place with limited infrastructure.

    5. Re:but what are the hardware costs? by ArcherB · · Score: 5, Informative

      No, demodulating a signal is not news. But not encrypting it in the first place ought to be.

      (And TFA had a red herring in its focus on the software used to record the signal--the software is probably the easy part, once you've captured the signal).

      We were using SINCGARS in the early 90's. SINCGARS is a frequency hopping, encrypted method of voice communication. We were just starting to use it to network military vehicles and personnel with HQ and each other. If SINCGARS could have been cracked, it would have put a beacon on every vehicle and soldier on and off the battlefield, not to mention eavesdropping. However, the inventor of SINCGARS could not decrypt the signal without the software and hardware keys. The software keys were changed at will. Usually weekly, but could easily be done daily. I am shocked that this signal does not use better encryption and/or frequency hopping. This type of communication is critical to tomorrow's battlefield.

      --
      There is no "I disagree" mod for a reason. Flamebait, Troll, and Overrated are not substitutes.
    6. Re:but what are the hardware costs? by sycodon · · Score: 5, Insightful

      If they can prevent me from watching porn on cable and satellite, they should be able to prevent these guys from hijacking the video feeds from the UAVs.

      --
      When Fascism comes to America, it will call itself Anti-Fascism, and tell you to give up your guns.
    7. Re:but what are the hardware costs? by WeeLad · · Score: 5, Funny

      If you squint and have a vivid imagination, they can never stop you.

      --
      Seriously, Don't take anything I say seriously.
    8. Re:but what are the hardware costs? by Anonymous Coward · · Score: 5, Interesting

      Simple explanation here.

      Back in the early days of this design, someone designated drone-originated video as unclassified. Otherwise there's no way in hell it would be unencrypted.

      This isn't an oversight - there's guaranteed a loooong paper trail going back to a conscious decision regarding the classification level of the drone video here, and following conscious decisions regarding the design.

      If you use encryption in a military system that is not NSA Type 1 approved, there's a LOT of paperwork required to prove that your encryption is not being used to protect classified information.

      Type 1 approved crypto is a royal pain in the ass. - http://en.wikipedia.org/wiki/Type_1_encryption

      It often proves significantly easier in terms of cost and paperwork to not encrypt than to prove that your encryption isn't being used to protect classified information. Security guys ask, "If it's unclassified, why are you encrypting it?", with "It's good design practice." resulting in massive beancounter agro.

    9. Re:but what are the hardware costs? by gandhi_2 · · Score: 4, Interesting

      No kidding.

      The SINCGARS is the standard today, though a few versions later.

      I flew RQ-11A Ravens in Iraq, and even THOSE aren't plain text transmitions. WFT?

      I'm sure a small mod will be pushed out now and the other UAV's will be encrypted and freq-hoping like it's no big deal.

      --
      THL phish sticks
    10. Re:but what are the hardware costs? by Grygus · · Score: 5, Funny

      Your comment that GA-ASI does not make voting machines has been recorded. Have a nice day!

    11. Re:but what are the hardware costs? by sycodon · · Score: 5, Funny

      What they SHOULD do is to substitute porn for the regular video feeds.

      They would either stop watching out of their sense of morality or NEVER stop watching.

      Win - Win situation.

      --
      When Fascism comes to America, it will call itself Anti-Fascism, and tell you to give up your guns.
    12. Re:but what are the hardware costs? by acklenx · · Score: 4, Insightful
      Just to be clear

      frequency hopping != encryption

      especially if you are the only transmitter in that spectrum nearby.

      --
      Never let a mediocre career stand in the way of a good time
  3. Sh..... by jc42 · · Score: 5, Funny

    Don't tell the DoD. They've been paying $7,000 per license for that software.

    --
    Those who do study history are doomed to stand helplessly by while everyone else repeats it.
    1. Re:Sh..... by Anonymous Coward · · Score: 4, Insightful

      This is just my experience but I met some computer engineers with top secret clearance working at the DoD. They are so incompetent that it's scary. Even worse, they were contractors/consultants. I'm not saying all DoD computer engineers are idiots. The problem is the government is so incompetent that they've given much of the work to large consulting companies whose sole purpose is to fill as many seats as possible for the revenue.

    2. Re:Sh..... by kalirion · · Score: 4, Insightful

      I think this has about as much to do with Army IT as IE vulnerabilities have to do with the Microsoft IT department.

    3. Re:Sh..... by blueturffan · · Score: 4, Interesting

      Not to be harsh about it, but think back to high school and college and ask yourself if you would describe the people who were planning military careers as the "best and brightest" of your class.

      I went to school with a guy that was student body president, captain of the basketball team, and valedictorian of his class. He went to the Air Force Academy, and after graduating won a Rhoades Scholarship. He has three master degrees, and graduated first in his class from flight school.

      He was (maybe still is) in command of the 89th Airlift Wing, which is responsible for flying and maintaining the planes that carry the president, vice president and other top U.S. officials. I believe he was recently promoted to Brigadier General.

      Yes -- I'd describe him as "the best and brightest". He also happens to be a very nice guy.

    4. Re:Sh..... by HaZardman27 · · Score: 5, Insightful

      I truly hope this is sarcastic, because the ignorance of this statement baffles me. To say the military is comprised only of self-serving individuals who seek some sort of sick pleasure from killing people is offensive to everyone who served or is currently serving. Military members don't get free food, clothes, or housing more than anyone else with a job does. There are allowances for these necessities that are simply an extension to a member's base pay, which for enlisted members would be terribly low otherwise. If you worked a minimum wage job for the same number of hours per week as an average military member, you would probably make more money than their monthly base pay.

      --
      Apparently wizard is not a legitimate career path, so I chose programmer instead.
  4. This is bullshit, guys. by fuzzyfuzzyfungus · · Score: 5, Informative

    We need an OSS option stat. Nobody should have to give up their software freedom just to make a mockery of America's finest tech toys.

    The only question is, would this make more sense as an added option in wireshark, or GNU Radio?

    1. Re:This is bullshit, guys. by j-pimp · · Score: 5, Funny

      The only question is, would this make more sense as an added option in wireshark, or GNU Radio?

      Well to keep with the unix philisophy of small reusable components the following should be done:

      • libUAVSniff should be created on github
      • libUAVSniff should be developed. It should include a simple command line program for sniffinf UAV traffic and spew to stdout
      • Wireshark will add a module that uses this library
      • GNURadio will add a module that uses this library
      • Someone will fork it on github and write an irc bot that will post UAV locations
      • Someone will fork it on github and write a twitterbot
      • github forks for perl modules, .net/java wrapper, etc
      • A codeproject article explaining how to track UAVs and plot their location using silverlight.
      --
      --- Justin Dearing http://www.justaprogrammer.net/ We're just programmers.
  5. $26 is a lot by gurps_npc · · Score: 5, Insightful
    How much is a bullet to the brain of the General commanding the war? But you need a trained sniper and an awfully good insertion to get that bullet there.

    Counting the cheapest part of the machine is silly.

    Software is often free. $26 is a lot for software. The radio reception, etc. and knowing where to aim are all much more expensive and require skill.

    --
    excitingthingstodo.blogspot.com
    1. Re:$26 is a lot by c6gunner · · Score: 4, Insightful

      Yes, it did. Not that the Taliban didn't have it coming, but the USA was still the attacker.

      If your friend shoots one of my family members and then goes and hides in your house, I'm not picking a fight with you when I come to drag him out. If you decide to get in my way, that's your problem.

      The pathetic thing here is that Taliban, Al-Qaida and bin Laden are all still alive and at large, so it could be argued that the US actually lost, failing to meet its goals for the invasion.

      By the same logic, Germany and Japan still exist today so I guess the US lost in WW2, also. Good thinking!

      They do seem to be quite primitive, actually, considering how quickly their defense collapsed, and how few casualties the attacker suffered.

      Frankly, the US could probably roll over the Canadian military tomorrow, just as quickly, while suffering not many more casualties. I guess Canada is primitive too, huh?

      You're confusing American dominance for Iraqi incompetence, and then assessing their entire nation based on your misunderstanding. That's just silly.

    2. Re:$26 is a lot by IgnoramusMaximus · · Score: 5, Insightful

      If your friend shoots one of my family members and then goes and hides in your house, I'm not picking a fight with you when I come to drag him out. If you decide to get in my way, that's your problem.

      Well, its a fine demagoguery you got there, but the actual reality was that the Taliban demanded to see evidence of Bin Laden's responsibility before handing him over (remember that Bin Laden is just a "spiritual leader" - read: "pontificating bore that talks hell of a lot but hasn't actually done much directly" as opposed to other, more hands-on operatives who worked out of Pakistan, Saudi Arabia and, in the case of the 9/11 crew, Germany) and the USA flatly refused. Following which the USA invaded declaring any and all comers as "unlawful combatants" with no rights of any kind.

      So to keep your analogy straight, you have a case of my friend showing up at my house saying that you are gunning for him, following which you show up with a box of explosives and demand that I hand him over or else "because he did me wrong!". And when I say "hold on for a sec, what proof exactly do you have?" you say "I don't have to explain myself to a non-human like you, far beneath my superior Manifest Destiny self! What I say goes or else! You got 10 minutes to comply!" and then set the bomb off 5 minutes later, killing my wife and maiming my kids, following which you get the biker gang down the street to help you rummage through and "govern" the wreckage. And so now you have two mortal enemies instead of one and not exactly what could be called a "moral high ground".

      This is how the Afghanistan mis-adventure is seen by "the other side" and it is of little wonder that the fight will likely go on indefinitely, Taliban having quite a bit (and growing by many accounts) of local support and very able to present itself as the victims of a belligerent, arrogant, foreign, religiously-motivated, supremacist aggressor, victims who will defend their ancestral homeland, their religion and their "way of life" against that aggressor to the bitter end.

      I'd say the odds of "victory" in Afghanistan for the USA are pretty much on the same level as those of all the previous Empires ... not entirely zero but any Vegas slot machine looks like a guaranteed retirement plan by comparison.

    3. Re:$26 is a lot by IgnoramusMaximus · · Score: 5, Insightful

      Your first mistake is assuming that operations against Al Qaeda in Afghanistan started in 2001. The rest of your argument is rendered moot by that mistake. The US has been operating in Afghanistan since the 90's, as a response to earlier Al Qaeda attacks. The 2001 invasion was just the final commitment in a much longer campaign.

      Oh I see, so in addition to being the chief sugar-daddy and arms supplier to Al Qaeda throughout 1980s, the USA then proceeded to meddle directly and covertly in Afghanistan as soon as their "allies" won and the USSR withdrew, showing itself utterly duplicitous and untrustworthy to the locals ... and this is improving your case how exactly?

      That, of course, hinges on how you define "victory". If all we care about is maintaining majority control over the country and preventing it from being used as a staging area for further attacks against the west, then we've already won.

      By that token the Nazis "won" WWII in 1942 ... I mean they occupied and held a lot of territory at the time, "preventing it from being used as a staging area by the Allies", no?

      Under any other reasonable definition we ... we haven't achieved all of the goals we've set for ourselves, but the odds of eventually meeting them are pretty much 100%.

      Yes, the time-honoured way of getting your ass handed to you: "fail to declare coherent, logical and testable goals, bloviate endlessly about 'progress' and 'democracy' and whatever other abstract and nebulous feel-good concept you can come up with, declare 'victory' and skedaddle home holding your bruised posterior, having met 'your goals' 110%! - whatever those 'goals' morphed into in the end in order to be met 110%". You did not seriously think you are the first would-be conqueror to come up with this?

      The opposite forces have no chance of achieving a military victory - the best that they can hope for is that we get bored and go home.

      You have an interesting way of defining "boredom", apparently measured in trillions of dollars, thousands of wounded, dead and maimed on your side and many more on theirs...

      And yes, all the defenders have to do is to do what they always have done ... to outlast the latest Empire until it crawls back whence it came from. They have an ample precedent for that, although you are of course the Super-extra-specially-exceptional Empire, the American One, so everything will be oh-so-super-specially-extra-exceptionally different for you, despite no substantial changes in the general conditions of the whole affair. Just because America is oh-so-Speeeecial!

      As long as we're willing to stay, we can't lose

      Which is pretty much a guaranteed loss for the USA as the "will to stay" (translated to real-life measurements of mayhem and treasury) is far, far, lower than "their" will to outlast you - they are after all fighting for their homes, their "way of life" (as they see it) and their religion (and "zealot" is too kind a word to describe most of them) - and all that on top of their vastly disproportionately lower cost of warfare!

      Unfortunately, it seems likely that we will decide to leave, largely due to opinions such as yours.

      No, you will leave because that is the only thing you can do. The alternative is "total war" and utter bankruptcy of the US Empire. None of the previous empires left because of nay-sayers either, they left because staying further meant Imperial Collapse (and some, like the USSR, waited a tad too long). No amount of Rah-Rah cheer leading will change basic realities of Afghanistan and the logistics of foreign conquests.

      I find that truly depressing. Seems like people didn't learn a damn thing from the American mistakes in the 80's.

  6. Oh noes by OverlordQ · · Score: 4, Informative

    So they recorded unencrypted OTA video feeds? While yes, they probably should have been encrypted in the first place and . . .

    The U.S. government has known about the flaw since the U.S. campaign in Bosnia in the 1990s, current and former officials said. But the Pentagon assumed local adversaries wouldn't know how to exploit it, the officials said.

    Yea that's kinda bad and lazy of them,

    Senior military and intelligence officials said the U.S. was working to encrypt all of its drone video feeds from Iraq, Afghanistan and Pakistan, but said it wasn't yet clear if the problem had been completely resolved.

    they're fixing it.

    --
    Your hair look like poop, Bob! - Wanker.
    1. Re:Oh noes by fuzzyfuzzyfungus · · Score: 4, Insightful

      I'm frankly more worried about "But the Pentagon assumed local adversaries wouldn't know how to exploit it, the officials said." than I am about this particular security vulnerability.

      Security vulnerabilities happen, and are unfortunate and need to be fixed, and we really should spend more time and resources on caring about them; but that is all manageable software/systems engineering stuff.

      Making important decisions on the basis of "Eh, our enemies are just ignorant mud farmers anyway, no problem", on the other hand, is colossally arrogant and extremely dangerous. Particularly, since the US currently has the world's highest tech and most expensive military, "Eh, they're just primitives, no problem" is a practically all-purpose dismissal of virtually any problem that you are too lazy to fix. That is a recipe for learning, the hard way, about every new asymmetric warfare trick.

    2. Re:Oh noes by couchslug · · Score: 4, Interesting

      It could be a deliberate ploy to manipulate what the enemy "sees". Why not have a "leak"?
      It's a bit like leaving USB keys around for the unsuspecting to pick up...

      --
      "This post is an artistic work of fiction and falsehood. Only a fool would take anything posted here as fact."
    3. Re:Oh noes by Minwee · · Score: 4, Funny

      I'm frankly more worried about "But the Pentagon assumed local adversaries wouldn't know how to exploit it, the officials said." than I am about this particular security vulnerability.

      I believe that the technical term for that is "Security Through La-la-la-I'm-not-listening!"

      Although it has a long and glorious past filled with successes, it's still not a recommended way to secure anything more important than ordering a pizza.

  7. Time to copyright! by jsnipy · · Score: 5, Funny

    Perhaps the US can put an IP copyright on the data then sue anyone who looks at it without a licesnce! More money!

    --
    -- if you mod me down, I will become more powerful than you can possibly imagine
  8. So instead of leaking this to the news... by a_nonamiss · · Score: 5, Insightful

    why didn't the DoD just start passing a fake feed from the drone? They could have added another encrypted channel for the real feed, which I would assume is trivial given the military's budget. Then pass fake data over the unencrypted channel. Sometimes disinformation to the enemy is far more valuable than real intelligence. I can see a bunch of jihadis sitting around watching a tv screen. "Look at those infidels. They are going to blow up the wrong building! Our secret base is 100 kilometers away! Say, does anyone else hear that noi..." [BOOM]

    --
    -Arthur
    Cave ne ante ullas catapultas ambules
  9. Hubris by mruizcamauer · · Score: 5, Insightful

    "U.S. military personnel in Iraq discovered the problem late last year when they apprehended a Shiite militant whose laptop contained files of intercepted drone video feeds. In July, the U.S. military found pirated drone video feeds on other militant laptops, leading some officials to conclude that militant groups trained and funded by Iran were regularly intercepting feeds." The Germans did not think the Poles could break their codes. The Japanese did not think the US and the Australians would break their codes. The British did not think Argentina would finish assembling the Exocets on their own without the French manuals or use them in a way differently than designed. The Afghan and Iraqi insurgents have the money and the brains to break into Western weapon systems, don't underestimate them (or the probable help from Iran, Syria, Korea, etc...) The prospect of getting killed is a powerful motivator.

    1. Re:Hubris by westlake · · Score: 4, Interesting

      The Germans did not think the Poles could break their codes. The Japanese did not think the US and the Australians would break their codes.

      The problem was never breaking the codes.

      The problem was breaking the codes more or less instantaneously.

      You need time to frame and execute an appropriate response - and far too often the correct response will be to do nothing.

      Since to do anything will invite suspicion.

      Eavesdropping on the Rising Sun
        The Code War
      The Edison of Secret Codes

  10. RMS by Ukab+the+Great · · Score: 4, Funny

    Not all religious zealots with huge bushy beards who fight in jihads and live in caves and don't use commercial software are terrorists.

  11. Re:More important question by Fieryphoenix · · Score: 4, Insightful

    From what I could make out, it's just the video stream transmitted by the drone that's unencrypted, not communications that control the drone. The obvious reason this might be done is to save on the computational requirements onboard the drone by not making it encrypt the presumably immense data stream of the video. Decrypting the rest of the communication the drone receives is probably an order of magnitude less processing load, or even two.

    If received and understood by the enemy in a timely manner, very useful information. But if it is just the image unencrypted and not GPS coordinates, etc, the enemy would have to have enough people watching the feeds to recognize the terrain that was being photographed... it's easy to see why this might not be considered likely and lead to the poor judgement to leave it unencrypted when the drones were designed, many years ago with less powerful processors available.

  12. Re:Seriously would it have been difficult by Eivind · · Score: 4, Informative

    It should've been encrypted, for sure. Agreed.

    However, it does need to be encryption that works over a noisy channel, with possible gaps in the datastream. Your typical block-cipher using chaining thus doesn't qualify. (If you wonder why, try encrypting a one-megabyte file, then change a few characters randomly in the first half of the file, then decrypt it)

    It's still not a hard problem mind you, just slightly more so than "grab AES, set it to CBC-mode"

  13. Some real kneejerk reactions above by Kupfernigk · · Score: 5, Interesting
    Really this is a huge fuss over nothing, and some of the more wacko conspiracy theories about CIA honeypots and the like (above) are just as silly as the "shoot General Atomics" mob.

    Is there any real security risk in this? I suspect it is very small. The Russians never bothered to encrypt the telemetry on their ICBM tests, because after all even assuming someone was reading it, they had no way of stopping the thing. Even if you know where the drone is, it is going to be very hard to shoot down; RPGs and IEDs really aren't much use. And given that this is a video feed, how do you ray trace back to the actual position of the camera?

    Unfortunately there are plenty of assholes out there who will exaggerate anything in order to claim that they are more security conscious than the next person (and perhaps hope to get a contract for their company). But this is surely small war, no-one dead, move along please.

    --
    From scarped cliff or quarried stone she cries "A thousand types are gone, I care for nothing, no not one."
    1. Re:Some real kneejerk reactions above by Registered+Coward+v2 · · Score: 4, Insightful

      Unfortunately there are plenty of assholes out there who will exaggerate anything in order to claim that they are more security conscious than the next person (and perhaps hope to get a contract for their company). But this is surely small war, no-one dead, move along please.

      And those same people don't know (or remember) the first rule of intelligence:

      Those who know, don't talk. Those who talk, don't know.

      --
      I'm a consultant - I convert gibberish into cash-flow.
    2. Re:Some real kneejerk reactions above by OzPeter · · Score: 4, Insightful

      Is there any real security risk in this? I suspect it is very small.

      The risk to this is not a danger to troops. The risk of this is having a completely un-edited video source available to people who would have a field day if the official US proclamation of what happened was visibly different from the recorded video stream

      --
      I am Slashdot. Are you Slashdot as well?
  14. you have a good point by circletimessquare · · Score: 4, Insightful

    furthermore, there's nothing to say they still can't do that, or aren't actually doing that already. in fact, a big story in the international press about how dumb the military is on these video feeds is a good cover. one can hope, anyways, that the military is smarter than depicted in this story

    --
    intellectual property law is philosophically incoherent. it is your moral duty to ignore it or sabotage it
  15. Re:All your drone are belong to us by HateBreeder · · Score: 5, Insightful

    Sensationalist... i would expect this from a tabloid.

    Title should have been: Unencrypted data broadcasted everywhere ... can be received by anyone!

    The leap from that to "$26 of Software Defeats American Military" is quite a big leap in my opinion.

    --
    Sigs are for the weak.
  16. Famous Last Words... by DarthVain · · Score: 5, Funny

    "Hey I can see my house from here! Oh Wai..."

  17. Gung ho by sjbe · · Score: 5, Insightful

    Not to be harsh about it, but think back to high school and college and ask yourself if you would describe the people who were planning military careers as the "best and brightest" of your class.

    Ahh, you are thinking of the one or two guys who were all gung ho but not especially bright and had delusions about being a badass commando. Yeah, my school had some too. See the thing is though that those guys aren't the guys running the military. The guys you are thinking of end up as infantry grunts or something similar and exit the service after a few years. I have a cousin who is one of those guys. Smart but classic ADHD and socially stunted and not someone I'd trust right now to be in charge of anything. But he served two tours in Iraq and now he's in college so I have hope for him.

    The guys in the officer corps (commissioned and higher level NCO) are almost invariably bright and hard working and most of them that I've ever met didn't talk much about their interest in the military. I have a classmate who is a major in the US Navy who never gave the slightest hint he was interested in a military career. He was quiet, very smart, and I would have guessed he'd be an engineer but instead he's become a heck of a good officer. I have a number of friends who were graduates of West Point and Annapolis and I've been impressed as hell by each one of them. Smart, incredibly disciplined, and I'd hire any one of them in a heartbeat.

    The US military is an incredibly complicated and large organization with huge budgets, difficult goals, and a huge workforce. If you think managing all that is easy and doesn't require tremendous skill, you are delusional. Sure they make mistakes just like any other large organization but their mission is also more complicated than most and if they fail, people die.

  18. Re:Can't add encryption? by decsnake · · Score: 4, Insightful

    As an engineer in the defense industry you probably also know how long defense systems live and how hard it can be to get upgrades pushed out into the field. It wouldn't surprise me at all if it wasn't technically feasible to encrypt the video stream at the time this system was first deployed and since then upgrading it has never been a priority for anyone with enough clout to make it happen. Now that its on SecDef's radar how long do you think its gonna take before this gets fixed?

  19. Re:Seriously would it have been difficult by QuoteMstr · · Score: 4, Insightful

    series of one-time-pads

    ...

    It can be repeating

    You are a dangerous fool. Never use a one-time pad more than once, even for "light" security. Doing that turns the whole thing into a Vigenère cipher and destroys all security. You might as well just XOR each byte of the message with 0x42.