Amazon EC2 Enables Cheap Brute-Force Attacks

snydeq writes "German white-hat hacker Thomas Roth claims he can crack WPA-PSK-protected networks in six minutes using Amazon EC2 compute power — an attack that would cost him $1.68. The key? Amazon's new cluster GPU instances. 'GPUs are (depending on the algorithm and the implementation) some hundred times faster compared to standard quad-core CPUs when it comes to brute forcing SHA-1 and MD,' Roth explained. GPU-assisted servers were previously available only in supercomputers and not to the public at large, according to Roth; that's changed with EC2. Among the questions Roth's research raises is, what role should Amazon and other public-cloud service providers play in preventing customers from using their services to commit crimes?"

That's silly.

[DWMorse]

"what role should Amazon and other public-cloud service providers play in preventing customers from using their services to commit crimes?"

The same role that Ford Motor Company is responsible to fill in preventing the use of it's vehicles as Getaway cars from scenes of crimes.

Re:That's silly.

And keyboard manufacturers who provided keyboards to "hackers" who guess manually.

Re:That's silly.

[YrWrstNtmr]

The same role that Ford Motor Company is responsible to fill in preventing the use of it's vehicles as Getaway cars from scenes of crimes.

I think it's slightly different. Once Ford sells a car, they are done (except for warranty work).
This is more like Ford providing assistance during the heist. The robbers are actively using the service in the commission of the crime.

Also, the type of car is irrelevant. Or no car at all. Cracking the WPA in this instance can't be done without using Amazons service.

Re:That's silly.

[frosty_tsm]

The same role that Ford Motor Company is responsible to fill in preventing the use of it's vehicles as Getaway cars from scenes of crimes. I think it's slightly different. Once Ford sells a car, they are done (except for warranty work). This is more like Ford providing assistance during the heist. The robbers are actively using the service in the commission of the crime. Also, the type of car is irrelevant. Or no car at all. Cracking the WPA in this instance can't be done without using Amazons service.

This would be like Ford giving road-side assistance during a heist. The tow-truck guy doesn't know the occupants are criminals, but if they see 20 bullet holes, a bleeding guy in the back, and maybe some curious looking bags... reporting it is simply being a good citizen.

Note the difference between Ford's tow-truck driver reporting what he saw and Ford monitoring all cars looking for those leaving a bank in a hurry.

Re:That's silly.

[Applekid]

"what role should Amazon and other public-cloud service providers play in preventing customers from using their services to commit crimes?"

The same role that Ford Motor Company is responsible to fill in preventing the use of it's vehicles as Getaway cars from scenes of crimes.

Eh, more like the same role that a chauffeur is responsible to fill in preventing the use of it's driven vehicles as getaway cars from scenes of crimes.

After all, once Ford makes a car they're done, right? EC2 is continually crunching numbers until it's cracked.

Re:That's silly.

[vux984]

I think it's slightly different. Once Ford sells a car...

So then its more like a rental car, if I'm a white hat cracker.

And I expect it will be like a stolen rental car if I'm black hat and steal someone elses amazon account / credit card to get access.

After all crooks typically use "fraudulently obtained" getaway cars too. So even if meticulous records are made for each car they aren't generally all that useful.

Re:That's silly.

[Surt]

Like using the GPS to help them find a good route to their getaway destination.

The article is 100% wrong about the availability of gpu instances. So this is definitely possible without Amazon's service. Amazon's service is just making it cheaper.

Re:That's silly.

Explain the wikileaks incident then.

When that happened, what they stated was something along the lines "we don't agree with what wikileaks is our resources". Logic follows, if they don't shut down any other kind of activity, then it means they're actively condoning it.

Re:That's silly.

[GeneralSecretary]

"what role should Amazon and other public-cloud service providers play in preventing customers from using their services to commit crimes?"

The same role that Ford Motor Company is responsible to fill in preventing the use of it's vehicles as Getaway cars from scenes of crimes.

Actually some car companies have systems to slow down cars remotely if they are in a police chase. Perhaps Amazon should then slow down servers that the police inform them are involved in illegal activities?

Re:That's silly.

This would be like Ford giving road-side assistance during a heist.

No, it's like Jared Loughner taking a taxi to the site of his shooting spree:

http://www.nytimes.com/2011/01/11/us/11taxi.html?partner=rss&emc=rss

The taxi driver is just providing his usual service at his usual price and has no indication that a crime is going to be committed.

Similarly, Amazon knows you're doing a lot of heavy computation, but that is one of the reasons someone would use Amazon EC2.

Re:That's silly.

[icebraining]

They probably stop them altogether - it's against their ToS to use the services for unlawful purposes.

Re:That's silly.

Perhaps Amazon could just update its TOS to say that the use of GPU's to defeat encryption methods is not allowed. Then if they found out or it was reported they could just cancel his account.

Re:That's silly.

[operagost]

Fords are being used to commit crimes? Clearly, the US government should step in to stop this. Ford must either allow severe regulation, or face a mandatory takeover. By the way, this has nothing to do with the federal government owning GM.

Re:That's silly.

[Reverand+Dave]

Agreed, that's like getting after adobe because someone used their Acrobat X to write a ransom letter or published a snuff film in .FLV format. If the users are violating the ToS then the company has a right to suspend service, but I don't think it is their responsibility to guess at it's users intent before they have actively violated the ToS.

Re:That's silly.

[Bert64]

There are perfectly legal reasons for cracking encryption...

Data recovery (eg forgotten passwords)
Security auditing
Crypto development (ie stress testing)

Re:That's silly.

[makubesu]

Why shouldn't Amazon do their part? Shouldn't companies try and protect the environment they do business in? Companies have higher obligations than to just make money. Granted, I doubt there is anything they could do, much as there's nothing Ford can do to stop their cars being used in heists. But if they can, they should.

Re:That's silly.

[Threni]

Why are most Slashdot analogies involving cars so utterly lame?

Re:That's silly.

[Jah-Wren+Ryel]

Eh, more like the same role that a chauffeur is responsible to fill in preventing the use of it's driven vehicles as getaway cars from scenes of crimes.

After all, once Ford makes a car they're done, right? EC2 is continually crunching numbers until it's cracked.

I say they should be the equivalent of a common-carrier. Let the government get a warrant if they want to snoop on the work someone does or to force amazon to cut them off. Otherwise keep on crunching just like the phone company keeps on connecting phone calls of drug dealers.

Re:That's silly.

[causality]

Why shouldn't Amazon do their part?

Because if it's a question of whether a crime has been committed, we already have trained professionals who specialize in dealing with this exact scenario: we call them police. They have restrictions on when and how they can gather evidence for some really, really good reasons. Amazon doesn't belong in the law enforcement business.

Shouldn't companies try and protect the environment they do business in? Companies have higher obligations than to just make money.

They should protect the environment in which they do business when they engage in activities that could ruin that environment for others. A factory that causes pollution of a river that affects everyone downstream is a good example.

Granted, I doubt there is anything they could do, much as there's nothing Ford can do to stop their cars being used in heists. But if they can, they should.

There's only one thing they can do. They can place everyone who does business with them under suspicion. They can closely monitor every single activity performed by their customers. If anything remotely looks like it might be related to cracking a password, they can assume it must be an illegal activity and not merely someone's recovery of their own data or security research and notify the authorities accordingly. Is that what you want?

It would accomplish three things. First, it would mean that Amazon takes on some or all of the investigative responsibility that rightly belongs to police, only without the restrictions that are wisely applied to police. I'm sure you'd waive all rights to privacy as part of the agreement attached to using the service and of course you'd trust them to never abuse this privilege. Any cost associated with all of this monitoring would of course be passed on to the customer. Second, it would result in many reports submitted to police that turn out to be legitimate, legal activity, with the cost passed on to the taxpayer. Third, it will make the real criminals respond by either using false credentials (like stolen IDs) or by using other forms of distributed computation, such as botnets, thus raising the profit other criminals make by operating such botnets.

Like most feel-good measures it would make little or no difference to the real criminals while causing more surveillance, inconvenience, and cost to the average user. It would also erode the concept of a presumption of innocence. All of that, just to avoid telling people that if you really need it to be secure, use sufficiently strong encryption with a sufficiently strong key.

The whole problem with the USA is that half of our laws are like this. I see why you'd find it a logical extension of the way we already do things, but I think that's because you haven't seriously examined the way we already do things.

Re:That's silly.

[spazdor]

http://www.sharethetruth.info/article/method-for-secure-obfuscation-of-algorithms This is an arms race that EC2 can't win even in principle. We should acknowledge this rather than trying to hold them accountable for the enforcement of an unenforceable rule.

Re:That's silly.

[spazdor]

The difference between one kind of job and the other is entirely nominal and not substantive. From the perspective of the server, say, "searching a nonlinear hash space for collisions" and "cracking crypto" are exactly the same math problem.

Re:That's silly.

[spazdor]

because BadAnalogyGuy isn't here at the moment to show us all how it's done?

Re:That's silly.

[causality]

They probably stop them altogether - it's against their ToS to use the services for unlawful purposes.

The automakers who can slow down a car involved in a high-speed chase is not unreasonable to me. That's because it would occur at the direct request of the police. That request, in turn, would happen only because a crime has been committed (attempting to elude police). What I would consider unreasonable would be if the police slowed down or stopped random vehicles with no probable cause or direct knowledge of a crime in progress.

If Amazon only scrutinized users at the request of the police, and only when there is good reason to believe that a crime has been committed, I'd consider that reasonable. It would just be an online extension of the way police already operate off-line. What I consider completely unreasonable is Amazon conducting surveillance on every customer and effectively regarding all of them as potential criminals, respecting the privacy of none, merely because a few people might be malicious. The latter scenario would serve only to magnify the damage that criminals already do.

Unless it's a truly obvious and egregious case -- such as a user openly bragging about breaking the law -- I don't want Amazon to try and determine what is or is not an "unlawful purpose". Example: someone is brute-forcing a piece of encrypted data -- maybe that's in connection with a crime and maybe it isn't. We have courts for that, and they're in a much better position to settle such questions. The only thing I expect Amazon to do would be to comply with a lawful court order that is made in good faith.

Re:That's silly.

It's not an unlawful purpose until the specific cracking incident has gone through the justice system. Until then, it's Amazon speculating about its customer's intent and interpreting the law the best they can. This is flawed. Do you really want them to do this?

Re:That's silly.

[icebraining]

No, I don't want Amazon to interpret the law. Parent said:

Perhaps Amazon should then slow down servers that the police inform them are involved in illegal activities?

Re:That's silly.

[TheLink]

No it's more like Rapidshare providing a file sharing service.

Re:That's silly.

[Dr+Max]

So when bikers in brisbane killed those rival bikers at the airport and escaped in taxis, the cab company and the taxi drivers should be responsible?

Re:That's silly.

[Neil+Boekend]

Only if that keyboard is fireproofed so you can brute force the key in 6 minutes.

Re:That's silly.

Where is the crime in removing something that should not be there in the first place

Re:That's silly.

[Yvanhoe]

The same role that Ford Motor Company is responsible to fill in preventing the use of it's vehicles as Getaway cars from scenes of crimes.

Actually if they were able to shut-down a car remotely, they would probably be forced to cooperate with police forces.

Re:That's silly.

EXACTLY

Re:That's silly.

Wikileaks was an on-going customer. These guys are probably there and gone in 6 minutes, so there's no way to disconnect them before they're done anyways.

Re:That's silly.

Touché

Re:That's silly.

[hesaigo999ca]

Boomerang comes included with certain models (or onstar depending where you are) of which the cops/feds can get a warrant to use the inherent kill switch of your system, which in the near future could happen to avoid having raving maniacs running from the cops at high speeds in rural areas.

I am ok with this, if you are stupid enough to go through residential areas at 150km an hour to get away from cops, let them just kill switch your car, and then arrest you...all new cars should have this in case....now the NEW problem comes in securing from any other miscreants from contacting onstar or boomerang (direct or indirect such as hacking) to send a command to stop your vehicle.

Re:That's silly.

[naily]

Or maybe the same role that military contractors have to ensure that dodgy countries can't buy state-of-the-art weapons. It's not just a matter of principle, it's a matter of threat assessment. WPA-PSK today... tomorrow SSL? Yes, there are several orders of magnitude in difficulty between them, but EC2 is all about massive scalability, right?

Amazon should encourage it.

[chrisj_0]

cracking an encryption key is not a crime. Using a cracked encryption key to seal data is a crime, and that hasn't changed.

Re:Amazon should encourage it.

[hedwards]

Technically speaking, they would be in for conspiracy. Allowing it because they aren't monitoring the use would probably be alright, but encouraging it would definitely make them liable, at least in part, for any criminal acts that they're involved with.

Re:Amazon should encourage it.

they are not in for conspiracy, since that would require actual specific knowledge and cooperation. They may however be civilly liable for negligence. That would depend on the cost required to monitor.

This would be incredibly difficult to prove, since you would need to assume they have some valid way of knowing which uses are ilicit and which are not, and there may be perfectly legitimate reasons to be running such crunching. (Such as the researcher in the OP, or code braking challenges)

Re:Amazon should encourage it.

[fluffy99]

cracking an encryption key is not a crime.
Using a cracked encryption key to seal data is a crime, and that hasn't changed.

You might want to re-read the DCMA again. They can charge you for the act of bypassing or facilitating the bypassing of protections. Just as John whats-his-face who broke the DVD CSS "encryption"

Re:Amazon should encourage it.

[TheLink]

1) How does this apply to "crack WPA-PSK-protected networks"?
2) AFAIK I don't live in a country where it's illegal to crack my own WPA-PSK protected network.

Re:Amazon should encourage it.

I'm not American you insensitive clod!

Wonder how safe longer keys are...

[mlts]

I wonder with the ways that WPA2-PSK is being eroded, if one should just go with 30+ character long keys. TrueCrypt always recommends to go with 20+ character passphrases and since there isn't much key strengthening with WPA2-PSK, a longer key is a good thing here. My preference is to use a 63 number of letters and digits, and if it gets forgotten, just generate another string and paste it into the router from a machine on the wired network.

Re:Wonder how safe longer keys are...

[2.7182]

I think you point is a good one. Basically, as key lengths get longer for most cryptosystems, the brute force time required grows exponetially (? - or really fast). So I think that this kind of issue, which comes up a lot in tech news lately, can be squashed by making a key length which is not unreasonably long. RSA for example is just not going to be beaten this way. If you find a parallel resource to factor 150 digits numbers, it probably isn't going to be able to handle 200 digit numbers. (Or maybe even 155 digits numbers...)

Re:Wonder how safe longer keys are...

[Carnivorous+Vulgaris]

If you use a 63 character, full ascii key, which is quite realistic since this is a key, not a password, then the time quickly rises to galactic scales.

Crisis averted.

Re:Wonder how safe longer keys are...

[Carnivorous+Vulgaris]

Charecter set ^ password length = permutations.
You're right with exponential growth.

Just remember that if your password has password dictionary fragments, including all common substitutions, then the length is the number of fragments, not the number of characters.

Re:Wonder how safe longer keys are...

[ikkonoishi]

I hear that Chuck Norris just uses his name as the key. When anyone tries to crack it their computer catches fire.

Re:Wonder how safe longer keys are...

This link has the actual test http://stacksmashing.net/2010/11/15/cracking-in-the-cloud-amazons-new-ec2-gpu-instances/

Which looks like a single dual fermi EC2 instance gets 250M hashes/sec which is crazy. So assuming you have a 100 instance cluster of them:
40 bits of random : 43 s (~ 8 chars)
45 bits of random: 23 mins (~9 chars)
50 bits of random: 12 hours (~10 chars)
64 bits of random: 23 years (~13 chars)

Better start using pwgen 14 for your passwords.. For WPA-PSK I actually use this:

$ python
>>> import base64
>>> base64.encodestring(file("/dev/urandom").read(128/8));
'HZE6Ka6GeO3OT23ay2G0Ww==\n'

Which isn't going to be reversed without breaking sha1.

Re:Wonder how safe longer keys are...

[operagost]

This article is about WPA, not WPA2. WPA2 uses all of 802.11i and includes AES.

Re:Wonder how safe longer keys are...

[jack2000]

It realizes the futility of it's existence and chooses to self terminate before Chuck Norris roundhouse kicks the entire apartment block, house cul-de-sac.

Re:Wonder how safe longer keys are...

[AHuxley]

Thanks for the code, finally a use for terminal in OS X :)
I wonder if it gets logged? Get the main computer and read the logs for much the crypto used?

Re:Wonder how safe longer keys are...

[Aphoxema]

If you use a 63 character, full ascii key, which is quite realistic since this is a key, not a password, then the time quickly rises to galactic scales.

Crisis averted.

Does using a longer key need more overhead? Significantly?

Re:Wonder how safe longer keys are...

[Midnight+Thunder]

I hear that Chuck Norris just uses his name as the key. When anyone tries to crack it their computer catches fire.

Chuck Norris doesn't need keys. His name is sufficient to tell people to stay away

Re:Wonder how safe longer keys are...

[X0563511]

Not that I've noticed.

I use a passphrase on mine, which actually results in a full length hexadecimal key (ie, the largest you can use with WPA2-PSK). I've not noticed and significant overhead.

Re:Wonder how safe longer keys are...

[X0563511]

Just make sure you have a character outside of hexadecimal in your WPA2 key, and it gets hashed up to a full length key anyways.

Re:Wonder how safe longer keys are...

[X0563511]

Oops. The article is about WPA, not WPA2.

Upgrade already, you damn stupid crackheads!

Re:Wonder how safe longer keys are...

[X0563511]

Oops. The article is about WPA, not WPA2.

Upgrade already, you damn stupid crackheads!

(random shit for /. filter: lksjdgkhjgjh)

Re:Wonder how safe longer keys are...

[Aphoxema]

Not that I've noticed.

I use a passphrase on mine, which actually results in a full length hexadecimal key (ie, the largest you can use with WPA2-PSK). I've not noticed and significant overhead.

Ohhh, I use a "passphrase" too, I didn't realize that's what it did... now I feel a little silly...

crime?

Cracking WPA != crime

Re:crime?

[hedwards]

It's not a crime the same way that picking locks isn't a crime. But that doesn't mean that if you're the one picking the locks that the cops are going to consider you an innocent bystander either. Legally, Amazon might be in the right for looking the other way as people do this, but that doesn't mean that they aren't going to suffer the consequences when/if somebody uses their equipment to break the law.

Re:crime?

[Mysteray]

Amazon doesn't know what the computations taking place on the CPUs/GPUs they lease are doing.

They could be searching for oil deposits, searching for radio signals from ET, recovering lost keys for a legitimate owner, for law enforcement, or for bad guys. They could be doing several of those things simultaneously and it would take very time consuming, deep, by-hand expert research to try to figure it out and you'd still never be sure you understand what all the numbers mean.

Amazon probably doesn't even know when someone installs a web server or a database on an EC2 node. They certainly don't know whether or not it's used to host material leaked from govt sources legitimately into the public domain or who and who isn't a journalist.

That doesn't seem to stop them from selectively applying their ToS at the request of the likes of Sen. Lieberman.

Re:crime?

[Opportunist]

Excuse me? Since when is the maker of a tool liable for its misuse? Did they change a law when I, Smith and Wesson were not looking?

Re:crime?

[HeronBlademaster]

They certainly don't know whether or not it's used to host material leaked from govt sources legitimately into the public domain or who and who isn't a journalist.

They don't, unless that customer trumpets their use of the service in that manner to the world...

Re:crime?

[Mysteray]

That's a very good point.

I tend to think of someone's use of EC2 as public info, only a "whois" away.

Security researchers like to use EC2 because it's cheap, and it's hard to block network scans from since it shares a netblock with other mission-critical stuff like, say, Twitter.

It's likely that industry journalists would have made a big deal about Wikileaks using it had they not pointed it out themselves.

I still can't tell if this is a keyword placement-piece for EC2 or if somebody really does think this is novel research. ISTR hearing there is an upcoming BlackHat presentation (and that BlackHat was owned by a media company too).

Amazon ought to be extremely careful about playing politics with its ToS and safe harbor provisions.

Re:crime?

[Thud457]

it's hard to block network scans from since it shares a netblock with other mission-critical stuff like, say, Twitter .

OMGWTFBBQROFL!

Re:crime?

[causality]

I still can't tell if this is a keyword placement-piece for EC2 or if somebody really does think this is novel research.

A lot of people have a very hard time with inductive reasoning, so they don't easily arrive at a general concept. Here, the general concept is that most useful tools can also be abused for malicious purposes. Each instance of this general concept makes news headlines for some reason. Usually it then splits into the usual "us vs. them" set of two camps: one calling for something to be banned or restricted or monitored, the other explaining why this is a generally unwise policy that amounts to a knee-jerk response to news that should not surprise anyone.

Henry David Thoreau explained it quite well (emphasis added):

And I am sure that I never read any memorable news in a newspaper. If we read of one man robbed, or murdered, or killed by accident, or one house burned, or one vessel wrecked, or one steamboat blown up, or one cow run over on the Western Railroad, or one mad dog killed, or one lot of grasshoppers in the winter, -- we never need read of another. One is enough. If you are acquainted with the principle, what do you care for a myriad instances and applications? To a philosopher all news, as it is called, is gossip, and they who edit and read it are old women over their tea. Yet not a few are greedy after gossip.

Re:crime?

[entrigant]

Well, to be fair, your friends Smith and Wesson have a special exception just for them from any liability of any kind. However, fundamentally, you're correct. :)

Re:crime?

[Mysteray]

Interesting comparison.

I, too, see the irony in the "dual-use" nature of technology in general, but I do have a perspective different than one thing you said though:

Here, the general concept is that most useful tools can also be abused for malicious purposes.

I've been to a bunch of hacker cons in the last couple of years and met a bunch of people in the infosec community. There are a lot of people using password guessing and other security auditing tools.

My impression is that, by far, the biggest users of these tools are organizations auditing their own security or contracting with outside parties to do so. Security auditing tools is a burgeoning industry and professional pentesters are in high demand. There are still a lot of black-tshirt-wearing hackers at the cons these days but if you talk to them most of them are in industry or government :-).

It's simply not correct to equate password-cracking tools with malicious purposes.

Re:crime?

[causality]

Interesting comparison.

I, too, see the irony in the "dual-use" nature of technology in general, but I do have a perspective different than one thing you said though:

Here, the general concept is that most useful tools can also be abused for malicious purposes.

I've been to a bunch of hacker cons in the last couple of years and met a bunch of people in the infosec community. There are a lot of people using password guessing and other security auditing tools.

My impression is that, by far, the biggest users of these tools are organizations auditing their own security or contracting with outside parties to do so. Security auditing tools is a burgeoning industry and professional pentesters are in high demand. There are still a lot of black-tshirt-wearing hackers at the cons these days but if you talk to them most of them are in industry or government :-).

It's simply not correct to equate password-cracking tools with malicious purposes.

Sure, just like a claw hammer could be misused as a murder weapon, yet the vast majority of people using claw hammers are only interested in driving nails. That's about how I would summarize the situation with password cracking tools. Note I never claimed they are primarily used for malicious purposes, only that overreacting to their potential malicious uses is unwise.

If the media treated claw hammers the same way they treat anything related to computers and networks, then every time some psychopath bludgeoned someone to death with a claw hammer there'd be big discussions about whether hammers need to be banned, or whether you should have to present ID to purchase one, or whether hammer manufacturers have a responsibility. The double standard and the phony shock at discovering that yet another tool can be abused is what I find absurd.

No role

This is like asking, "What role should auto manufacturers take to prevent people from using cars to commit crimes?" No role! It's not the object, it's the person and the actions they commit.

Re:No role

[mini+me]

Tell that to Napster.

Re:No role

[Opportunist]

Every time we talk about sensible law someone comes in with a counter example out of the area of copyright and patents.

Please, in case you haven't noticed yet, the insanity in copyright and patent laws is only rivaled by sex laws. Let's hope at least the rest of the legal codex at least retains a bit of reason and connection to reality.

Wikileaks

[Sub+Zero+992]

Amazon provide infrastructure services. They need not, should not, must not know or seek to know how these services are used.
Oh wait, Wikileaks...

Re:Wikileaks

[TheCarp]

You forgot one.... cannot.

Firstly, they can't, reasonably audit all code going into the system by hand. This leaves some sort of automated code check, or monitoring the workloads in some way. Simple size of the workload doesn't help, that could be anything.

You could watch for library calls to hash functions but, they are easy enough to implement and get around that.

Even if you could detect the fact that I am hashing strings over and over again, you still wouldn't know why I was doing it. Am I researching hash functions? Am I processing bitcoin transactions (probably not an economical use), am I strength checking my own password? A groups passwords?

Hell I worked as an admin at another job. I was called into another admin's office one day to be shown a jumble of characters on his white board.... in the middle of them was my password. He had been tasked with strength checking all of our passwords.I was surprised that he got mine, but, in thinking about it later, it was close enough to being based on a couple of dictionary words that it wasn't very good.

Re:Wikileaks

They need not, should not, must not know or seek to know how these services are used.

Why? Because you say so? So then you'd also agree that I can do with your property however you want and you have no right to monitor how it's being used?

Re:Wikileaks

[Mana+Mana]

> Oh wait, Wikileaks...

Facile, too facile. To TOS or not to toss the fuckers who violate them. Hmmmm? Interesting. Provocative.

Silver haired megalomaniac pooty hounds, grifters, "dirt bags?" bemoan the leak, the squeal to their service providers.

Re:Wikileaks

Now what is the password on the WikiLeaks insurance file?

Re:Wikileaks

[Mana+Mana]

> Re:Wikileaks (Score:0)

Fuck you, hippie.

None?

[kju]

They should not take any steps in this direction. We should have learned that. it. just. don't. work. Brute-forcing a hash is not illegal anyway. If the customer of amazon decides to misuse the result, than this is not the responsibility of Amazon. Many services and tools can be abused for crime.

Re:None?

[noidentity]

I think they should be required by law to only process non-evil bits. The implementation is trivial: just add an extra "evil" bit to every bit.

Re:None?

[zmollusc]

Finally, someone talking sense. And with the steady drop in memory prices, it is even affordable.

Mod parent +1 ( Genius )

Re:None?

[Jah-Wren+Ryel]

I think they should be required by law to only process non-evil bits. The implementation is trivial: just add an extra "evil" bit to every bit.

We can do better.

Add a couple of bits and use them for ECC - Evil Cleansing Code - that way you can make sure that if any evil ever gets in to the system it is automatically cleaned out.

Re:None?

I completely agree!

If I knew someone was trying to crack one of my encrypted files using Amazon, I'd report it to Amazon. I would never expect Amazon to take a proactive approach to finding people doing that.

Easy answer

[betterunixthanunix]

what role should Amazon and other public-cloud service providers play in preventing customers from using their services to commit crimes?"

No role whatsoever; let law enforcement agencies handle criminal investigations.

Re:Easy answer

[LWATCDR]

If you criminalize super computers then only criminals will have super computers.
I mean really people. I can buy guns, knives, and cars off of which can be used in crimes. I do not see anyone suing Glock.

Re:Easy answer

[spong]

No role whatsoever; let law enforcement agencies handle criminal investigations.

Is anyone here really comfortable with Amazon in the role of policeman? Hmm?

Re:Easy answer

[betterunixthanunix]

I do not see anyone suing Glock.

http://www.washingtonpost.com/wp-dyn/content/article/2005/10/20/AR2005102000485.html

Offensive

From the article:

"This approach is so easy a grandmother could use it"

As a 49 yo grandmother, feminist, and C programmer I find that offensive. Why not a grandfather ?

Re:Offensive

Probably because grandfathers tend not to be bitches.

Re:Offensive

[natehoy]

Because he probably couldn't manage it? ;)

Re:Offensive

[h4rr4r]

How come you never age?

If you are going to troll like this try aging your character.

Re:Offensive

From the article:

"This approach is so easy a grandmother could use it"

As a 49 yo grandmother, feminist, and C programmer I find that offensive. Why not a grandfather ?

They're too busy bitching about the demise of COBOL and how we wrote an entire system in 2KB

Re:Offensive

Your case will break if you continue to enum your characteristics while being so volatile. Do switch to decaf else you won't be able to relax, for I am about to pass you an extern long double with a sizeof eight, making a perfect union between signed and unsigned types. Then I'm gonna roll-over and goto sleep.

Re:Offensive

[operagost]

Because human beings have two sexes, so we have to choose one?

Re:Offensive

Because human beings have two sexes, so we have to choose one?

And if you chose "grandfather" that would be sexist and not inclusive. If you chose "grandmother" that'd be an offensive remark about women.

The moral of the story: women are only satisfied when they have something to complain about and they'll find something to complain about even if there is nothing to complain about. It's how they raise serotonin levels in their brains (actual scientific fact, though chatting endlessly about the most trivial of things like the color of someone's eyes will do the trick too). There. That's both sexist, inclusive, offensive, AND true.

Re:Offensive

[hooptie45]

Probably because grandfathers tend not to be bitches.

Well played sir

Re:Offensive

From the article:

"This approach is so easy a grandmother could use it"

Except that I read the fine articles, and Grandmothers aren't mentioned anywhere in them.

I've seen this posted before.

I'm a hobbit. What type of creature are you?

Re:Offensive

[exomondo]

I find that offensive.

That's because:

feminist

Why not a grandfather ?

Because then all the misogynists would be up in arms. And we can't go with GrandTransexual...because u don't wanna mess with trannies.

Re:Offensive

wow. that was boring and unfunny.

Re:Offensive

no..but they can be sons of bitches!

Re:Offensive

[mcgrew]

As a 49 yo grandmother, mysandrist and C programmer I find that offensive.

FTFY.

Well I Can Answer the Last Question

[BJ_Covert_Action]

Among the questions Roth's research raises is, what role should Amazon and other public-cloud service providers play in preventing customers from using their services to commit crimes?"

None whatsoever. Amazon and other service providers are retailers. They are not a police force. If a crime is being committed, let the designated authorities (i.e. cops) investigate it, police it, and arrest the criminal. No business should ever be involved in policing anything. That's a role specially held for the executive branch of governments.

Re:Well I Can Answer the Last Question

I'm inclined to agree in principle--but if they don't cooperate at all, we'll likely end up with more situations comparable to the FBI Dallas Datacenter raids. I agree any good DR plan should include contingencies for even police raids... but it shouldn't be the expected and likely case. Unfortunately--with cloud computing and the amazon model--the odds of sharing a CPU with a criminal is... fairly likely. The odds of sharing a data center with a criminal are virtually 1/1. If amazon resists (even legally), I find it highly probable that some jackbooted asshole will eventually decide to get a warrant for *everything* and start driving it all away in a long line of SUVs for weeks at a time.

While amazon doesn't have a legit role...socially...Well...I think we have to admit they have some role in practice--or will.

Re:Well I Can Answer the Last Question

[BJ_Covert_Action]

While amazon doesn't have a legit role...socially...Well...I think we have to admit they have some role in practice--or will.

No, they don't have a role. If the police, or FBI, or whoever need access to Amazon's resources to prosecute a legitimate criminal that is likely using Amazon's services for criminal activity, then said police entity needs to obtain a legal warrant just like they do for anything else. If the warrant is obtained legally, then Amazon, by law, must comply with the warrant and turn over all data required by the warrant. That is fine. That is legal. That is how the system is supposed to work. If Amazon resists police investigation of Amazon's computational resources after the police have obtained a legal warrant, then Amazon is on the hook for legal prosecution by their own action.

Any deviation from this model is an infringement on the rights protected under the 4th amendment of the Constitution. Any deviation from this model further corrupts the justice system, as well as industry. If you give a profit motivated company the power of execution over it's customers, then they are no longer customers, they are servants. No privately held company should ever have the power of execution over an individual. If they want to refuse service, that is fine. Amazon is not required to provide their services to everyone by law. However, once they allow a customer to exchange legal tender for a service or good rendered, they do not gain the power to police or otherwise execute that individual's actions. They are welcome to terminate services and return whatever fees are necessary to the customer. But policing in any manner, voluntarily leaking private information to government authorities, or sharing of data not explicitly outlined in the business contract is an abuse of the law, the justice system, and the spirit of business between customers and service providers.

Re:Well I Can Answer the Last Question

[wondafucka]

Among the questions Roth's research raises is, what role should Amazon and other public-cloud service providers play in preventing customers from using their services to commit crimes?"

None whatsoever. Amazon and other service providers are retailers. They are not a police force. If a crime is being committed, let the designated authorities (i.e. cops) investigate it, police it, and arrest the criminal. No business should ever be involved in policing anything. That's a role specially held for the executive branch of governments.

Although I agree with you, the store owner that sold John Wayne Gacy facepaint probably received some unwanted scrutiny after JWG was outed. The person who sold ammo to the guy who gunned down the congresswoman is probably sick of being pursued by TV cameras. Amazon, however only has to face the occasional lawsuit or lawmaking. There are consequences, but no inherent moral or legal obligation.

Why use EC2?

[jonescb]

How much time does this take to do on a home computer using the same GPU acceleration? I know that Amazon has tons of computing power, but you're not the only one using it. Why spend $1.68 to crack a key when I can do it for free in the same amount of time on the PC I already have.

Re:Why use EC2?

[betterunixthanunix]

Last I checked, a high end GPU costs quite a bit more than $1.68, and if you are just going to crack a few WPA keys, why would you want to spend so much money?

Re:Why use EC2?

[natehoy]

"In the same amount of time" is the biggie. They are talking about using short timeslices of hundreds of computers. The article mentions using 400 GPUs (but isn't very clear on whether 400 GPUs for 20 minutes is what costs $1.68). If that's true, then decoding it with a single GPU would take about 5 1/2 days, assuming you had the same class of hardware Amazon is using.

Not earth-shattering amounts of time, true, but if speed is of the essence you probably don't want to wait the better part of a week.

Re:Why use EC2?

This is the stats of one instance for the GPU

22 GB of memory
33.5 EC2 Compute Units (2 x Intel Xeon X5570, quad-core “Nehalem” architecture)
2 x NVIDIA Tesla “Fermi” M2050 GPUs
1690 GB of instance storage
64-bit platform
I/O Performance: Very High (10 Gigabit Ethernet)

this is a little more powerful than your average desktop.

Re:Why use EC2?

[MichaelKristopeit337]

EC2's power doesn't come from the individual pieces of consumer grade hardware it utilizes... it comes from the vast parallelization of thousands of pieces of such hardware, all linked together through an API layer exposed to anyone with a credit card.

Re:Why use EC2?

[jonescb]

I think the 2x Teslas is the only thing in those stats that are really necessary for cracking keys. You don't need any fancy networking, or tons of data storage and probably not that much RAM. If the cracking is all GPU accelerated, the need for two high end CPUs is questionable. With that said, Teslas are indeed pretty expensive.

Re:Why use EC2?

[Wingman+5]

for normal cluster computing you want high IO between instances (doing some math this guy was running 8 of these instances to get the numbers he was achieving, so to answer the grandparent, you would need to buy 16 Teslas to get the performance he is getting)

Re:Why use EC2?

[volsung]

The assertion that high end Tesla cards (often $2k) are required for this crack is nonsense. In terms of integer, single precision floating point and memory bandwidth, a GTX 580 is actually FASTER than the most expensive Tesla card. Tesla cards have better QA for 24/7 usage, 4x faster double precision floating point, and 3 or 6 GB of memory, plus some other occasionally useful features. But anyone with an NVIDIA SLI gaming rig built in the last 2 years could easily have done what this guy did in less than 20 minutes.

Re:Why use EC2?

[Bert64]

Because many people already have such GPUs for playing games, and yet very few people play games 24/7...
It's quite feasible that someone could play games during the day, and let their GPU do cracking at other times.

Re:Why use EC2?

[AHuxley]

"don't want to wait the better part of a week." Trailer park, hotel, holiday .. 20 minutes is great. In a week you might be back home :)

Re:Why use EC2?

EC2's power doesn't come from the individual pieces of consumer grade hardware it utilizes... it comes from the vast parallelization of thousands of pieces of such hardware, all linked together through an API layer exposed to anyone with a credit card.

hey i know you, you're that nigger with a hundred slashdot accounts. "you are NOTHING" and all of that typical Internet Tough Guy bullshit. you talk tough on Slashdot because in reality you're just a little ineffectual bitch who can't stand up for himself in person. you got something to prove. the rest of us don't, bitch.

besides, how would anybody ever know if the name and address you claim actually belongs to you or some guy you don't like? you never heard of the Joe job before? if that is your real info then you're an idiot with no respect for his own privacy. if that is not your real info then you're just another piece of shit, a NOTHING as you like to say it. so which one is it. are you an idiot or another piece of shit?

no sane person would both have multiple Slashdot accounts so he can escape the consequences of being a trolling douchebag (namely, a starting score of -1), but then post his real name and home address so he can fail to escape identification. you see they are not compatible. if you are not afraid to put your name behind your speech in REAL LIFE then why do you run away from consequences of putting your account behind your speech in Slashdot? if you are such a manly man then pick one slashdot account and stick to it and take the consequences of getting downmodded all the time like a man. if you don't have the balls to do that then quit pretending like you're so brave for giving out what is probably a fake address. got it?

you cower worse than any AC you have ever judged as inferior to yourself. don't ever forget that. cover it all up with false bravado since that's easier than admitting how much of a failure you are.

Re:Why use EC2?

[Black+Gold+Alchemist]

high end Tesla

Plus, they're great for running away from the police - until they run out of battery power... No wait, wrong kind of Tesla.

Re:Why use EC2?

> Why use EC2

It can fly from an aircraft carrier, so it can be deployed worldwide. It has economical turbo-prop engines. Its radar dish can see as far as one hour flight distance and maybe one is peeking through your window right now!

Re:Why use EC2?

[MichaelKristopeit337]

i suppose they could actually GO to the address and ASK, moron. did you really not think of that?

cower some more, feeb.

you're completely pathetic.

None

[Microlith]

They cannot arguably be capable of defining what actions being taken with an EC2 instance are and are not crimes, therefore they should not even attempt to do so. It is not, after all, their duty to do so.

They can refuse service to those who they feel are suspicious, or cut people off if they violate some generic ToS, but surreptitiously cutting in because they think someone is committing a crime (and cracking WPA is not a crime), only runs them the risk of false positives.

More importantly, if they really feel they are observing someone committing a crime using their service, they should stand back and report it to authorities, who (in varying degrees of accuracy) are charged with being capable of determining if a crime is taking place and have the authority to intercede.

Le Gasp

[Even+on+Slashdot+FOE]

You can buy computer time to compute things! What will they think of next!

Re:Le Gasp

You can buy computer time to compute things! What will they think of next!

Hookers.

None.

[harl]

Breaking news! Tools can be used for anything!
Do you require pre-approval to use a hammer since it can be used to kill someone? What about the knives in your house?

Just like the phone company they should pay no attention to what their systems are being used for.

Trying to police it is a waste of resources. They start looking then people will start obfuscating the data. If I send you a big pile of data in no noticeable format (since I've grabbed only the stuff I need and catted it together) and a bunch of code it's going to take you a lot longer than 6 minutes to figure out what it does. Once you do figure it out then what's the point work has already been done?

Re:None.

[thePowerOfGrayskull]

Breaking news! Tools can be used for anything! Do you require pre-approval to use a hammer since it can be used to kill someone? What about the knives in your house?

Guns, cars, and just about anything else that provides an "obvious" means of inflicting harm on others fall into the same category, but undoubtedly-well-meaning folks always manage to get them regulated.

Prevention or Reaction?

[southpolesammy]

I'm not certain how Amazon would be able to prevent such activity before it happened, aside from code snooping, which is probably in violation of the terms of their services agreement. Perhaps profiling would be in order before accepting someone as a customer, but how would you protect yourself against shell companies acting on behalf of a known abuser? Rather, I think the question should be "how quickly can Amazon react when this occurs".

ISP's and hosting providers have had to face similar situations for almost a couple decades now, and I would think that they'd be the logical entities for Amazon to consult with re: the mitigation of illegal activities using their cloud as an attack vector.

This is so not news.

[Mysteray]

Someone took a password-guessing program and ran it on EC2. Big freaking deal.

EC2 now offers GPUs. Someone took a GPU-based password-guessing program and ran it on EC2. Big freaking deal.

True, raw SHA-1 used all by itself is not the thing to generate password hashes with, but this is not a weakness in SHA-1. As the researcher says, it shows merely that SHA-1 is efficient.

SHA-1 is not weakened, broken, or exploited in this research (it is significantly broken in other ways though).

Teams were guessing passwords with GPUs Defcon last year. They were guessing passwords with EC2 last year, too. The combination is not novel or innovative.

This reads like Marketing placement to me.

Re:This is so not news.

[MichaelKristopeit337]

you haven't heard?

slashdot = stagnated

20-character

[Lord+Ender]

It's actually 20 random characters that are recommended for use as cryptographic keys. The reason for this is that 20 random keys from the US keyboard has the same number of possible combinations as 128 random bits. If you use anything less than 20 random characters, even if you use a 128-bit encryption algorithm, you won't have 128-bit encryption. The same is true if you use 20 non-random characters. A brute-force attack would try passwords with words or phrases before going for the really random stuff, so you again don't have 128bit encryption.

Also fun to realize: for every character less than 20, you lose 100x your security. A 19-character password could be cracked in just 1% of the time of a 20-character password. A 10-character password would take .000000000000000001% of the time.

Re:20-character

[pjt33]

There are some fairly notable error margins in your figures. Taking the claim that 20 characters have 128 bits of entropy, we get a character set of size 85, which is plausible (a-zA-Z0-9 plus 23 punctuation marks), but then each character less than 20 loses a factor of 85 rather than 100, and reducing by 10 characters has one fifth of the impact on the key space that you calculate.

I personally prefer to stick to alphanumerics, avoiding oO0iI1S5Z2. 23 characters gives me more than 128 bits of entropy.

Re:20-character

[petteyg359]

It's actually 20 random characters that are recommended for use as cryptographic keys. The reason for this is that 20 random keys from the US keyboard has the same number of possible combinations as 128 random bits.

26 letter keys + 10 number keys + 8 symbol keys * 2 shift keys = 88 characters.
2^128 = 128 bits ~= 3.40e38
88^20 = 20 characters ~= 7.76e38
88!20 = 20 unique characters ~= 7.48e37

128 bits do not have anywhere near the same number of possible permutations as 20 US keyboard characters. None of the above has anywhere near the permutations a 2048-bit RSA key has (~3.23e616), either :)

Re:20-character

[sexconker]

It's actually 20 random characters that are recommended for use as cryptographic keys. The reason for this is that 20 random keys from the US keyboard has the same number of possible combinations as 128 random bits.

26 letter keys + 10 number keys + 8 symbol keys * 2 shift keys = 88 characters.
2^128 = 128 bits ~= 3.40e38
88^20 = 20 characters ~= 7.76e38
88!20 = 20 unique characters ~= 7.48e37

128 bits do not have anywhere near the same number of possible permutations as 20 US keyboard characters. None of the above has anywhere near the permutations a 2048-bit RSA key has (~3.23e616), either :)

26 letters
10 digits
11 symbols (`-=[]\;',./)

= 47 keys
*2 = 94 characters.
Add tab, space, and newline/carriage return if your shit allows it.

Re:20-character

[Lord+Ender]

You seem to have forgotten that your keyboard has a shift key. There are 96 characters on a US keyboard, not 85. This number is close enough to 100 that my statement is damn accurate.

Re:20-character

[Lord+Ender]

Your comment is based on false information. There are more than 88 characters on a US keyboard.

Re:20-character

[pclminion]

What is a "random character?" Is the letter 'c' random? There's no such thing. PROCESSES are random -- values are not. If you took a perfect, uniform random number generator, used it to generate a password, and it spat out "password123456", there would be nothing wrong with that. In fact, if you start imposing rules like "randomly generate a password but then exclude it if it contains an English word" then you are actually HARMING the randomness of your process.

Re:20-character

[Lord+Ender]

Welcome to the world of cryptography, kiddo! "Random" is a fun word. Here's an example of some random numbers: http://www.dilbert.com/fast/2001-10-25/

Need more? http://www.amazon.com/Million-Random-Digits-Normal-Deviates/dp/0833030477/ref=cm_cr_pr_product_top

For the purposes of cryptography, though, random (obviously) means 'unpredictable.' Or, more specifically, it means it is impossible to write program which generates passwords devised using your scheme without going through, on average, half the keyspace per attempt.

So remember that when you're talking crypt, use the crypto definition of the term. Then you (hopefully) won't make embarrassing comments like that again.

Re:20-character

[fluffy99]

Your comment is based on false information. There are more than 88 characters on a US keyboard.

It's hard to use the break key, arrow keys, or the function keys for password or passphrase characters though.

Re:20-character

> _If you use anything less than 20 random characters, even if you use a 128-bit encryption algorithm, you won't have 128-bit encryption._

Only if your attacker knows. If my password is 9999999999999999999, and my attacker just starts a brute force from the beginning, it's gonna take him a really long time to get there. On the other hand, if he knows I've done something stupid, he'll try stuff like this before attempting brute force.

Re:20-character

[Lord+Ender]

You need to count again. You've still got it wrong. Just look at your keyboard--you can do it!

Re:20-character

The parent may be using a laptop keyboard for reference.

Re:20-character

[pjt33]

This US keyboard only appears to have 94 characters, but I actually wasn't looking at keyboards before. If you have 96 characters then a 20-character password has about 131.7 bits of entropy.

Re:20-character

[Vegemeister]

I don't use that shift key anyway. It's a lot easier to remember a slightly longer password than a mixed case one.

Re:20-character

[Vegemeister]

But only 36 of them are useful for passwords.

Re:20-character

[Lord+Ender]

That is not correct. 26x2 (letters) + 10x2 (num/sym) + 11x2 (sym) +1 (space) = 95. There are 95 distinct characters that can be used as keys/passwords by any software that wasn't written by a complete moron. In some cases, even tab can be used.

Re:20-character

[Lord+Ender]

Fail. For every key you "don't use" it would have to be order-of-magnitude longer, not 'slightly' longer.

Re:20-character

[Lord+Ender]

You counted wrong. Perhaps you overlooked the space character? That makes 95. If your software allows tab input, that makes 96.

Re:20-character

[pclminion]

For the purposes of cryptography, though, random (obviously) means 'unpredictable.'

I'm not sure how that's different from what I said, "kiddo."

Again, there are no random numbers. There are numbers which are generated by random processes.

Re:20-character

[Lord+Ender]

You're wrong. There very much are random passwords. Random passwords are those selected via a method which can't be predicted meaningfully.

Re:20-character

Hey, that other guy is right that you are wrong, but he is also a douche. He is trying to explain "Random" to you in the world of cryptography, but does a horrible job. His first link to dilbert actually contradicts his main point. His second link is to a book that doesn't tell you anything about what random is.

What he actually is trying to get across to you are two principles. One, random data that can be used practically in the physical world, and two, random optimization.

The first point regarding random data is the Monte Carlo method. I'm hoping you've played the board game Battleship... if not, the point of the game is to sink the other teammates ships by guessing where they are located in a grid. If you played with your "random character" program, you might end up guessing the entire top two rows. But I am smarter than you, and learned the Monte Carlo method. This means I have *optimized* my guessing algorithm by knowingly placing my ships in a pattern meant to confuse you which means not placing any two ships directly next to each other. I have also used this same method to choose where I "attack" you (a scattered arrangement). Then based on any hits I receive, I use the info I know (how many hits each ship has to sink it) to continue my strategy. This is the random optimization part.

There are many flaws in the above analogy, but many of those problems can be carried straight back to password creation as well!

Another way to explain it is as humans, we are order and pattern seeking by nature. Everything you use or build is done by a process that is laid out and methodical. Even demolition teams do so in a methodical type way. Therefore it is convenient to remember things which are familiar sequences to us; phone numbers, addresses, parents/teachers/friends/lovers names, and descriptor words that relate to a password or activity/event that is taking place are all the most common methods to create a password. You have to think of one lingual word in a password equivalent to one character in a password; so password872 is actually a 4 char password.

A problem arises when that other guy says "random (obviously) means 'unpredictable.'" Which in the realm of determinism philosophy, is correct (random is objective). But what if you change password to tdgpdgodg872. Each sequence of 3 chars are each of your children's initials and their ages are 8, 7, 2, respectively. So the problem is what is random to one person, is not random to someone else.

Basically, I welcome you use a password predictor that is not optimized to select "random" passwords. It will make it that much easier to crack and I will have access to your wireless that much faster because I am smart and know that many people will *choose* password123456 as their password and will try that "random password" before I try a "more random password".

Just remember optimization .... because we are human. ;)

Re:20-character

[Vegemeister]

Fail fail. Mixed case and numbers:

62^17 = 2.95568891 × 10^30

Single case and numbers:

36^20 = 1.33674945 × 10^31

Password strength is polynomial on the character set and exponential on the length.

Re:20-character

[Vegemeister]

I agree that arbitrary password restrictions are an abomination, but the mental effort necessary to remember mixed case and special characters is disproportionate to the amount of strength they add to the password. It is best to voluntarily restrict oneself to characters that are easily remembered and make up the entropy per character with a few extra characters.

It's especially important if you write your passwords down. Special characters are ambiguous:
" ''
` '
| l
, .
: ;

Re:20-character

[Lord+Ender]

If you don't know the difference between a single-quote and a backtick, you probably shouldn't be in charge of cryptographic systems (or anything else important on a computer).

What about LED "wireless" networks?

[countSudoku()]

Oh, about 6 seconds for that security travesty, I reckon. 4 seconds, if setup by faulty Windows Admins.

HA! Mr. T is still laughing at you, only harder this time.

The pricing is wrong

[Wingman+5]

Either the guy is lying or the pricing is wrong, from the TFA is says they charge 28 cents a min, but from the amazon ec2 pricing page it says [quote]Pricing is per instance-hour consumed for each instance, from the time an instance is launched until it is terminated. Each partial instance-hour consumed will be billed as a full hour.[/quote]

also to get 28 cents/min you would need to run 8 instances at $2.10/hour so really he paid $16.80 not $1.68

Re:The pricing is wrong

[AHuxley]

He might have done more math over that hour and the price was for a useful subset of the results?

What role should they take? None, maybe?

[Opportunist]

I would expect Amazon to cooperate with the law enforcement should they discover that their service was abused to commit a crime. But why should they required to "avoid" it? And most of all, how? The only way to really keep people from using that service for criminal means would be to explicitly disallow certain uses and then monitor whether it is used this way. And that in turn raises a question: How? Because one of the core reasons this service is interesting is that it offers cheap calculation power. If you attach a metric ton of red tape and surveillance, it's most likely cheaper and faster to let your old Pentium do it.

Hands Off

[b4upoo]

Cloud services need to avoid any type of actions that create the illusion that they may be responsible for what users do. As long as they never have any editing of any uses of their product they will probably not be held liable by the courts. In a way it is like the truck driver that opens the trailer door and sees what he is delivering. As long as he does not know what is in the trailer the law will not charge him with transporting illegal or stolen items. Intent and knowledge are locked together. Don't look, don't see and don't know.

Math...

[Kymermosst]

... is not a crime!

Re:Math...

[enrevanche]

No problem, the newly elected house of representatives can fix that.

That's not correct

[Sycraft-fu]

Reason is the key you provide isn't used directly on a competent cryptosystem. It takes a hash of the key. So the key is always the requisite number of bits for the system, even if it is actually too long or too short.

Now you are correct in that shorter keys are faster to crack, however in a system like that you can't just straight out brute force the raw keys. You have to take the passwords, hash them, then test that. That takes longer.

Re:That's not correct

[Carnivorous+Vulgaris]

Not always.

Access points use the SSID as the salt, and most APs use common default SSIDs.

Re:That's not correct

[icebraining]

Not here - most people get their routers from their ISP, and they generate a new SSID for each (ISP name + 4 alphanumeric characters).

Re:That's not correct

[Bert64]

If you know the source password is less than a certain length (ie less than the keysize), then thats what you attempt to brute force instead of the derived key... Go for whichever (actual key, source password) has the least possible combinations.

Re:That's not correct

[rbayer]

Hashing is so fast as to be a truly negligible part of the time required to perform a brute-force attack. At worst, it maybe makes it take twice as long, which in the world of password cracking is completely irrelevant (just think, if it takes 2 days without hashing, is there much of a difference if it goes up to 4 days?). The parent's post is 100% correct in that restricting your keys to only a certain subset of the alphabet has the same effect as simply using shorter keys in the first place. For example, if I tell you that passwords are no more than 8 characters and only consist of lower case letters a-z, then there are only as many combinations as using a 37 bit key in the first place. Hashing my character password up to 128 bits doesn't actually do anything to increase the strength; if it did, we would just hash everything and anything up to $LARGE_NUMBER-bits and call it a day.

Re:That's not correct

[Lord+Ender]

Wrong. A brute-force attack of crypto cipher created from hashing a password is performed not by going after the hash result, but by going after the password. The computation of the hash from the password is O(1), so it doesn't actually take any longer.

Re:That's not correct

[Trapick]

Just because the hash operation is constant time doesn't mean it's zero time - there's still a computational cost to computing the hash, which may be significant.

Re:That's not correct

[Lord+Ender]

No, it's not. Constant time is insignificant compared to exponential time.

Re:That's not correct

[Vegemeister]

The time required to find a random key is, on average, the time required to test half the key space. The average time to break an encryption scheme by brute force given by:

T(n,k) = (1/2)*(n*H)*(c^k)

where:

H is the time to compute the has function once.
n is the number of recursions of the hash function.
c is the character set used for the password.
k is the length of the password.

Because legitimate users only have to test one or two passwords, n can be very large without adversely impacting legitimate users. Obviously, the better solution is to start with a Diffie-Hellman key exchange and verify the identities of the client and access point with certificates distributed out of band (USB, printed dotcodes, etc.).

For the record, hashing is used in WPA-PSK to de-correlate the password and the key and to mitigate the problem of frequently used passwords. The password is salted with the SSID then passed through SHA1-256 4096 times. This means that if your SSID isn't one of the the top 1000 for which a pre-computed rainbow table exists, the attacker has to do it themselves. The hashing, therefore, slows down dictionary attack by a factor of 4096. Of course, if you actually use randomly generated passwords (few do), this is only the equivalent of about 2 extra characters.

I suspect that the the GPGPU speed improvement mainly occurs in calculating the hash. If the hash were fast, the bottleneck would be reading the word list from disk. People cracking WPA on GPUs

WPA, not WPA2

[MobyDisk]

WPA is obsolete and has been. Use WPA2.

Re:WPA, not WPA2

[rduke15]

If using TKIP/PSK (like most home users, and all my neighbours), there is no difference:

"But I use WPA2 so it's cool right?

Actually, while WPA2 introduced CCMP mode as a replacement for the problematic TKIP, when run with authentication based on Pre-Shared Keys (PSK), it is still vulnerable to dictionary attacks. Our service works against both WPA and WPA2 when PSK is being used. "

Re:WPA, not WPA2

[arose]

Everything that uses passwords is "vulnerable" to dictionary attacks. That doesn't really say anything.

Re:WPA, not WPA2

[MobyDisk]

I am unclear on this, but I don't think they are brute forcing the password. They are brute forcing the SHA-1 hash used during the handshake with the router.

Re:WPA, not WPA2

[arose]

A dictionary attack is not brute forcing anything. Unless they have a flaw in WPA2 that reduces a supposedly large number of possibilities in a component to a manageable list a dictionary attack would only be useful against the password. The exact mechanism of executing the attack might not be repeated authentication attempts but the nature of the attack doesn't lend to attack a lot of things.

Sensationalism as usual...

NP? For fun, let's take a game that is entirely solvable, like chess... Tell me, using all the EC2 instances, who wins in the end at chess?

Wait, what!? You don't have enough EC2 instances to do that right? Oh... I see, you don't even have enough atoms in the universe to build a machine that would be able to answer that (using our current understanding of math/comp-sci/physics/etc.).

Use bigger keys, understand what combinatorial explosion means and GTFO with your sensationalism.

Nothing to see here besides my typos and grammatical mistakes, move along.

A simple solution

[jpiratefish]

One simple solution I can see for this is forcing a certain amount of up time on the servers to avoid charges that make short-use less desirable. An example - if I want to spin up multiple parallel servers for 1 hour each, I can get 10 servers for a few dollars. That's a blink in terms of usage, but a lot of power for a short time - there's IO, provisioning, transfer, Etc., and real costs incurred on Amazon's side of things - and in terms of payback, Amazon probably makes more money if those 10 servers stay online for at least a couple-hours each. If someone makes a server run for short burns, they could employ a simple grace system - you get 4 systems an hour, and then get charged $1 for each create/shut performed unless the systems stay up in excess of 4 hours. This way, folks can feel their way in as newbs without taking a hit, but abuses could then pay a premium for doing things with behaviors that appear to be more malicious than kindly. Something along those lines could curb abuse - but I must agree with other folks' posting to some extent - it's not Amazon's place to enforce proper Internet behavior. Profiting from a slightly less abusable pricing model is probably the way to go - as long as they don't kill their customers or send business away.

Re:A simple solution

Amazon bills by the hour and charges partial hours as full.

This is wildly overstated as a risk

[igb]

The basic story is slightly hysterical. Firstly, WPA2 does use a multiple-iteration key derivation function. Secondly, even with the claimed performance, he can only "brute force" five or six characters, depending on the character set in use. It's enough performance to deal with dictionary words, because, indeed, it's a dictionary attack. But even at 400K password derivations per second (ie 400M SHA-1 hashes per second), eight random characters drawn from the 96 character printable ASCII repertoire are going to take 571 years to perform a brute force attack on, or an average time to success of 285 years. Don't like the odds? My home network uses 12 characters drawn from a 64 character set (ie base 64 encoding), which needs 374 million years (average 167 million) at that performance. Do I give a shit if that number gets reduced by a few orders of magnitude? Not really: I can always move to 15 characters...

Re:This is wildly overstated as a risk

[Mysteray]

The great majority of passwords don't have anywhere close to the entropy of "eight random characters drawn from the 96 character printable ASCII repertoire". Probably a great many passwords can be successfully guessed in a reasonable amount of time at 400K trials per second.

here are the results from the last Defcon 18 contest.

Re:This is wildly overstated as a risk

[Haeleth]

Passwords, yes. But there is a good reason to keep passwords short: one has to type them in regularly. Wifi passphrases are things one generally only ever types in once,* so there is no reason not to make them as long as the OS will allow. Mine is over 40 characters long; it has some structure in order to be memorable, but I don't think anyone will brute force it in the near future.

* Or twice, if you are using an obsolete and poorly designed operating system.

Re:This is wildly overstated as a risk

[digid]

So my wifi wpa2-psk password is something like "wh@t w3r3 th0s3 p30pl3 th!nk!ng!"

I've been reading that passwords should random but to me a password like this seems basically impossible to crack. Am I missing something about the randomness part?

Re:This is wildly overstated as a risk

[igb]

You only need to type it once, right? Using as a key the output from "openssl rand -base64 9" will resist a million attempts per second brute force attack for on average 75 million years. Worried that's not enough of a safety margin? Worried someone might manage a million times faster attack? "openssl rand -base64 12" will resist a trillion attempts per second (10^12) for 1.25 billion years on average. Now, get on with the rest of your life.

Re:This is wildly overstated as a risk

[Mysteray]

I agree with you, my wifi password is also very long and randomly generated.

But I'm not the one you need to convince, it's every individual who chooses a wifi password who is in the set of those we might consider "at risk", said risk being possibly overstated. Whatever that means. :-)

In any case, published experience strongly suggests that many wifi installations have passwords which don't hold up long against 400K trials/sec.

Of course, for granting access to some guy in the parking lot with any guessable password the administrator is a fool. But I am reminded of the Far Side cartoon with the scientists observing a bunch of clowns and asking "Yes, they're all fools gentlemen. But the question remains: what kind of fools are they?"

Depends on Who You Ask

[carrier+lost]

...should Amazon and other public-cloud service providers [be liable for] customers [...] using their services to commit crimes?

• MPAA/RIAA - If it aids in file-sharing, then Amazon should be charged $6M for each infringement
• Washington - If it aids in leaking US data, then Amazon should be "extraordinarily rendered"
• Wall Street - If aids the banks in looting the world's economies, then Amazon should get a $300M bonus.

Hope this helps...

Re:Depends on Who You Ask

[choongiri]

> Amazon should be "extraordinarily rendered"

Good job they have all that GPU power around to help achieve a seriously high definition rendering.

The problem is not EC2

[gweihir]

The problem, as one of the referenced articles points out ans as has been known in the crypto-community for a long time, is fast key-derivation functions. Even the original UNIX password encryption function already took that into account and iterated the key derivation function to make attacks take longer. Typical methods used today for example iterate a second or so on the target CPU. This is a compromise between needing one second per unlock and requiring one second per brute-force attempt on an equivalent CPU. GPUs still make that attempt problemantic, but one application of SHA1 takes something like 0.1 microsecond on a modern CPU, so it should at least be iterated 10'000'000 times or so. Even with that, SHA1 is a bad choice, as it is too simple. Use something that requires a full-blown CPU to work and that a GPU cannot easily do. Of course, high-entropy passwords also help a lot by enlarging the search space.

But in essence, EC2 GPU instances can only break Crypto for cheap that was badly implemented anyways. That is not really a surprise. There are far too many people out there that do crypto without even understanding the attack possibility, let alone being cryptographers.

The same moronic reaction

[Un+pobre+guey]

Make it illegal, and people will stop doing it.

That notion has universal appeal. It is simple enough that practically all voters understand it. It is compatible with most people's moral code, at least in principle. It lends itself very easily to law-and-order populism and electioneering, and of course anything that increases the use of police forces and prisons is popular with several major lobbying organizations. One problem, though: it only occasionally works. This is aside from any legal and civil rights issues associated with assigning liability to providers of goods and services who have no practical or conspiratorial relationship with the law breakers, and cannot easily be demonstrated to have shown negligence. Can anyone point out clearly relevant court precedent?

Really

[zmollusc]

According to the back of this envelope, an eight digit upper case alphabetic key would take a worst case of $2436.32 for his algorithm to crack. What sort of shitty pre-shared key is he attacking? Or is my envelope wrong and I suck?

Legacy WLAN hardware

[tepples]

Are you offering to bankroll an upgrade to all deployed products whose WLAN hardware lacks WPA2 support? I didn't think so.

Re:Legacy WLAN hardware

[MobyDisk]

I've actually never seen a WPA network before. I've only ever encountered WEP and WPA2. Is there anywhere that has a large WPA network deployed? WPA was an interum solution intended to work on old WEP hardware.

That said, another person is claiming this attack works on WPA2 as well, so no win anyway :)

stop using non-random passwords

[madbavarian]

People need to stop using non-random passwords for WPA2-PSK. This attack sounds like a dictionary attack, because there is no way at only 400k passwords per second that he could map more than a minuscule fraction of the 2^256 key keyspace. We are talking 1e77 potential passwords. At 400k/sec that only amounts to 1e13 passwords per year. It will still take 1e64 years to break. Since the universe is only ~1.5e10 years old, I think we are safe enough from a true brute force attack.

Of course that assumes people do turn off WEP and WPA1 and all the WPA1 crap in WPA2 (like turning off TKIP and only allowing CCMP).

Re:stop using non-random passwords

[froggymana]

Perhaps he got luck?

Brute force Wikileaks insurance file?

Speaking of wikileaks... so how much would it cost to brute force open the 'insurance file' that Assangewas supposedly using to block his own assassination?
 
  Can it be done within a reasonable budget using Amazon's GPU clusters? Not trying to bait or troll here, I'm seriously interested in the answer.

Re:Brute force Wikileaks insurance file?

[GameboyRMH]

I've heard ballpark guesses of around 10 years of work on a top supercomputer.

You're silly.

It's more like..

The same role that Amazon Inc is responsible to fill in preventing the use of its services for illegal activity. Like how they abandoned Wikileaks for.. wait what was the reason they gave again?

Its a bit late to pull the "I'm an impartial services provider" when you're clearly not impartial.

Another use for google street view

Remember, the NSA has had this capability for 20 years, so we're just wiki-leveling the playing field. Of course like Google the NSA would never use their power for evil. Unless you're a threat to America's National Security (incl. Monsanto) or may be a threat to pollute our precious bodily fluids.

New Era Hats

[leiqiong]

The blog article very surprised to me! Your writing is good. In this I learned a lot! Thank you! New Era Hats

The obvious question

[Jonboy+X]

Where's the mobile app?

Link to his presentation

[Jeff+Moss]

(shameless plug) Here is his talk description, and his materials will be on-line next week after this talk. https://www.blackhat.com/html/bh-dc-11/bh-dc-11-briefings.html#Roth

Yea, nice one, except for the numbers...

According to the numbers published in the article, 400k pw/sec, it would take (a little lisp):
(/ (expt 64 15) 400000.0 3600 24 365 (expt 1000 3))
=> 98137.055 billion years to crack a 15 character base64 password (what I'm currently using on my WPA)

Far from the 20 minutes alleged in the Infoworld article.

Yep, yet more baseless fear-mongering on the part of Infoworld, wish slashdot would stop posting such senseless drivel.

Re:Yea, nice one, except for the numbers...

[leuk_he]

with 400K per seconde het could only crack a password of 5 - 6 position.

Checking on WPA-PSK , you will see that the password via some hash function results in 256 bits key. to to check all effective passwords at 400K/sec = 9,2 * 1-^ 63 year, that is considerable more than your guess...

EC2/the cloud matters

[RichiH]

So, I could not have done the same. You probably can't do it while on the road.

The beauty of using a cloud service is that, given the proper tools, your local complexity is down to having said tool sniff data, you enter EC2 credentials & maximum cost and off you go.

Re:EC2/the cloud matters

[volsung]

Sure, being able to rent a computer for $1.68 an hour to do this cracking is a huge win. I was taking issue with the implication from the summary that this has been beyond individuals up until now, or that Tesla cards are some kind of magical supercomputer thing. We've had the power for a while, and high end GeForce cards can hold their own with Tesla on everything but double precision.

In fact, looking at the specs of the midrange NVIDIA GPU in my laptop, it could probably do this calculation in a few hours. Not as impressive as 6 minutes, but one should wary of breathless enthusiasm here.

Re:EC2/the cloud matters

[RichiH]

> Not as impressive as 6 minutes, but one should wary of breathless enthusiasm here.

That is a given. A proper WPA2 password is still way beyond the scope of pretty much anybody, anyway.

What a dumb way to spin the story

[boutell]

WPA-PSK is insufficiently secure... and it's Amazon's fault? Stupid. Did they crack https? No. So clearly there are sufficiently secure technologies. Use them. Don't prop up crap technologies by calling in the Feds. Honestly, invoking the law to resolve a problem that clearly doesn't require it is an actively dangerous habit of thought. And I'm hardly a libertarian. I just know a bad idea when I see one.

SPAM and DDOS the bigger problem

They should not be policing users doing brute force attacks.

But I have no problem whatsoever with them not allowing SPAM and DDOS attacks to be performed using their machines. Although it would be funny if Anonymous had used this service to run a massive DDOS attack on amazon.com.

It's just another choice

[thetoadwarrior]

We had an employee who got sacked for using his network privileges to steal information from people. He then proceeded to try to hack our network and then use an EC2 instance to just and DOS attack us. I'm sure it's cheaper than a VPS solution from 5+ years ago but there has always been options for fucking with people. Using an EC2 instance is just another option. It could go away and they'd find something else.

I'm just glad we can get something like EC2 these days for those of us that want to do something legit.

This one concerns me

[aklinux]

If Amazon's GPU clusters are this cheap and easy & can be used for this, what other encryption can they be used to break? My PGP encrypted hard disk for $9.95? Then again, maybe my concerns are unfounded. Maybe someone can explain where I missed the boat?

Re:This one concerns me

They are only cracking WPA.

never mind

[aklinux]

a friend explained to me when I was off track. Oh well.