Slashdot Mirror

← Back to Stories (view on slashdot.org)

TCP/IP Might Have Been Secure From the Start If Not For the NSA

Posted by Soulskill on from the another-lash-for-the-whipping-boy dept.

chicksdaddy writes: "The pervasiveness of the NSA's spying operation has turned it into a kind of bugaboo — the monster lurking behind every locked networking closet and the invisible hand behind every flawed crypto implementation. Those inclined to don the tinfoil cap won't be reassured by Vint Cerf's offhand observation in a Google Hangout on Wednesday that, back in the mid 1970s, the world's favorite intelligence agency may have also stood in the way of stronger network layer security being a part of the original specification for TCP/IP. (Video with time code.) Researchers at the time were working on just such a lightweight cryptosystem. On Stanford's campus, Cerf noted that Whit Diffie and Martin Hellman had researched and published a paper that described the functioning of a public key cryptography system. But they didn't yet have the algorithms to make it practical. (Ron Rivest, Adi Shamir and Leonard Adleman published the RSA algorithm in 1977). As it turns out, however, Cerf did have access to some really bleeding edge cryptographic technology back then that might have been used to implement strong, protocol-level security into the earliest specifications of TCP/IP. Why weren't they used? The crypto tools were part of a classified NSA project he was working on at Stanford in the mid 1970s to build a secure, classified Internet. 'At the time I couldn't share that with my friends,' Cerf said."

36 of 149 comments (clear)

  1. It should be renamed the NIA by Anonymous Coward · · Score: 4, Insightful

    National Insecurity Agency

  2. In a way its a good thing it didn't happen by Viol8 · · Score: 5, Insightful

    It would be utterly obsolete by now and would just be a legacy function that would have to be supported for legacy apps and would be a security swiss cheese. TCP is better off just being a pure transport later protocol with modern crypto layered on top.

    1. Re:In a way its a good thing it didn't happen by Anonymous Coward · · Score: 4, Insightful

      Not to forget that 70's computers were very very slow and cryptography would have been to much a bottleneck to be widely used. Today some people still claim SSL makes their website slow.

    2. Re:In a way its a good thing it didn't happen by bunratty · · Score: 3

      Exactly! Just like how we're all using IPv6 so we don't have to deal with a limit of 4 billion IP addresses. Oh wait.

      --
      What a fool believes, he sees, no wise man has the power to reason away.
    3. Re:In a way its a good thing it didn't happen by Lehk228 · · Score: 2

      a chip that would be 3-4 months faster, at the expense of being binary incompatible with all existing software, and be effectively the same design as current would be a bone-headed move.

      --
      Snowden and Manning are heroes.
    4. Re:In a way its a good thing it didn't happen by Anonymous Coward · · Score: 2, Interesting

      a chip that would be 3-4 months faster, at the expense of being binary incompatible with all existing software, and be effectively the same design as current would be a bone-headed move.

      Which apple did 8 years ago when they moved away from PowerPC. I worked on maintaining separate architecture builds of software for unsupported version machines nearly 3 years ago. Also a friend who is locked out of ever getting past Mac OS 10.4.11 precisely due to binaries. One the good side, the OS busted the 32-bit 4GB-ram barrier natively long before Windows Vista was out. Arch dumping can be done, but sweeping changes working for a 1% isn't the same as scaling up to 90%+

      It was a bold move, but most slashdotters never blinked at the awfully drastic paradigm shift. People here were not yet deeply invested on Mac hardware until iPhone app targeting became chik.

  3. Misleading headline by Alan+Shutko · · Score: 4, Insightful

    It's true, that had the NSA chosen to share that info, we could have had better security. On the other hand, the NSA were the ones that developed it, so if not for the NSA, it would not have existed to use.

  4. IPX by Anonymous Coward · · Score: 5, Insightful

    If TCP/IP had included crypto, we'd all be using IPX now days...

    The reason TCP/IP proliferated was because it was light-weight and easy to implement. Crypto would have killed that.

    1. Re:IPX by Ralph+Wiggam · · Score: 5, Funny

      Don't bring a basic grasp of history and networking into this. We're being mad at the NSA.

  5. Encryption would have been too slow by mveloso · · Score: 4, Insightful

    If TCP/IP had encryption way back when, it never would have worked because it's too slow. Shit, stuff was so slow that people turned off checksumming. Imagine having to do something exciting, like actual encryption. It'd be worse than running a 300 baud modem.

  6. That's funny by Anonymous Coward · · Score: 2, Informative

    We used to use telnet, ftp and uucp, those weren't secure or encrypted.

    The internet used to be open and free, owned by no one.

    It's a stretch to think they wanted to do encryption from the start.

    1. Re:That's funny by Vanders · · Score: 2

      The packet-switching technology was military in origin - they were seeking a new form of communication network that could continue to operate without downtime in the face of massive physical damage, like cities being nuked. Academia soon adopted the technology, and the early internet culture came from there.

      No. Wrong. Stop perpetuating this myth. Please, go read Where Wizards Stay Up Late

      The vague concept of packet switching was developed simultaneously both by a British Post Office engineer (which is where we get the term Packet Switching) and a RAND researcher (which is where we get this ridiculous myth). However at no point did ARPA care about building the network to survive a nuclear war; it just happened that packet switching was a good way to make maximum use of the AT&T provided switched circuits that created the backbone.

      --
      Syllable : It's an Operating System
  7. Misleading article. by jcochran · · Score: 5, Insightful

    Rather misleading article and slant there. It implies that the NSA deliberately took action to make TCP/IP insecure. However, in reality, the NSA merely didn't contribute their classified work towards the specification of TCP/IP. And frankly, that's a good idea. The overhead of encryption at that time would have been too much. Additionally, cryptography only gets better with time, so whatever algorithm that would have been selected would have long since been obsolete. And due to backwards compatibility, would still have to be implemented. After all, things like routers and such are a tad more difficult to update than programs.

    1. Re:Misleading article. by Hrdina · · Score: 3, Insightful

      Exactly, and I think this is what the AC was trying to say in one of the earlier responses.

      The headline seems as if it is trying to tie this story to all the recent reports of the agency actively weakening crypto algorithms.

      It would have been insane to allow classified algorithms to be published along with TCP/IP (unless of course they were willing to declassify).

      I didn't watch the video, but read TFA. There, Cerf is quoted to say:
      1. “If I had in my hands the kinds of cryptographic technology we have today, I would absolutely have used it,”
      2. “During the mid 1970s while I was still at Stanford and working on this, I also worked with the NSA on a secure version of the Internet, but one that used classified cryptographic technology. At the time I couldn’t share that with my friends,” Cerf said. “So I was leading this kind of schizoid existence for a while.”

      Maybe he said it in the video, but in TFA he does not say "I wanted to use the classified technology in TCP/IP but the agency denied my request."

    2. Re:Misleading article. by RR · · Score: 2

      Rather misleading article and slant there. It implies that the NSA deliberately took action to make TCP/IP insecure. However, in reality, the NSA merely didn't contribute their classified work towards the specification of TCP/IP.

      Yes, Slashdot is rather sad these days.

      But the NSA isn't just about withholding classified information. The NSA is about weakening encryption standards. Vint Cerf said he would have used encryption if he had the opportunity to do it over again. The Internet community had such an opportunity, IPv6 with IPsec, and the NSA bungled it up.

      IPsec doesn't involve the routers, because that would kill performance. IPsec is designed to handle different algorithms, so you don't need to support the same broken algorithms indefinitely. But the IPsec spec is a horrible design that in practice has made it very little used outside of very professional environments with very full-time engineers to keep it running.

      --
      Have a nice time.
  8. Re:Flamebait by ShanghaiBill · · Score: 4, Informative

    the world's favorite intelligence agency may have also stood in the way of stronger network layer security

    But that is misleading. The NSA did not "stand in the way". The just declined to help. That is not the same thing.

  9. Re:Flamebait by hawguy · · Score: 3, Insightful

    the world's favorite intelligence agency may have also stood in the way of stronger network layer security

    But that is misleading. The NSA did not "stand in the way". The just declined to help. That is not the same thing.

    The research existed, Cerf had access to it, but they didn't allow it to be used.

    If your house is burning down and the fire chief prevents you from using the fire hydrant in front of your house even though you have the right equipment to hook up to it, wouldn't you say he's standing in the way? He's not just declining to help, he's actively preventing you from using tools and knowledge that you have because he's afraid that other people will see you do it and then they'll know how to fight their own fires.

  10. Re:Flamebait by Anubis+IV · · Score: 4, Insightful

    The headline is horribly horribly misleading. I hope people at least RTFS.

    Exactly. This isn't a "would have been" that failed because of NSA involvement. This is a "would not have been" that failed all on its own. The NSA had some confidential tools at its disposal that may have been able to salvage the idea, but them not sharing their tools is hardly a reason for us to be shaking our fists and saying "it would have worked if not for them". It's like blaming a toll road for your late arrival after choosing to take public streets instead of the toll road. It makes no sense.

  11. Re:Flamebait by Anonymous Coward · · Score: 5, Informative

    It also at the time would be been considered a state secret. Until the late 90s publishing any of a huge number of crypto tools to the international community was illegal. So even if he had permission to publish this research to the US, it couldn't be given out internationally. That's not the "NSA"s decision, that's was much higher up than them.

  12. Re:Why separate layers? by MindStalker · · Score: 2

    Most things don't use the entire stack.
    TCP/IP needs to be seperate layers because you don't want to use TCP for everything.

    Everything on the internet has an IP address, so that is the universal internet layer. You can put TCP or UDP or any number of more obscure layers on top of that.

    Most applications squish the sesson,presentation,application layers into one, keeping them seperate is optional, there isn't a separate encapsulation header for each just a session flag to keep track the individual connection.
    Under the IP layer (network) you have the data-link and physical layer. data-link is your MAC address (this is neccesary) and physical is your wire, there isn't a protocol there generally, though there is for WIFI for example which doesn't use wires.

  13. Thanks, Obama! by BenSchuarmer · · Score: 2

    grumble grumble

  14. We have a new Scapegoat by hessian · · Score: 2

    NSA.

    For everything that's wrong... blame them.

    It's not that our society is failing, that our voters are mentally obese and thus always pick the wrong option.

    Nope, it's the NSA. NSA did this to you. You're the victim, not the perpetrator.

    Keep saying it and maybe someday, you'll believe it.

    --
    Futurist Traditionalism
  15. Re:Flamebait by ganjadude · · Score: 2

    funny you should mention that. not exactly the same but http://www.nbcnews.com/id/3951...

    --
    have you seen my sig? there are many others like it but none that are the same
  16. Just in case anybody's forgotten (which they have) by mmell · · Score: 3, Informative

    There were individuals and organizations back in the seventies and eighties that got in trouble with the US Government for writing and publishing software that used strong encryption. The problem was that the published code was visible from outside the US and ran afoul of ITAR regulation (citation: check the history of PGP). Incorporating strong encryption in TCP/IP would have made its use and adoption subject to US ITAR regulation.

  17. Re:It would have been insecure anyway by SuricouRaven · · Score: 3, Interesting

    The only way to hide traffic path is through partial-information relaying - the Tor approach. Nasty overhead. But even the most pathetic payload encryption would really make a huge difference - it would mean tapping all traffic at a trunk would require dynamically following hundreds of thousands of conversations betweeen tens of thousands of nodes. The NSA could do it, a lot of smaller governments couldn't.

    Also, even a DH key exchange without any public key authentication at all is still somewhat effective: Yes, it can be MITMed with ease, but such an attack is also very detectable if you have a side channel, which means any untargetted mass-monitoring operations would be swiftly noticed.

  18. Re:Flamebait by deadweight · · Score: 2

    Exaclty. Kind of like saying my home-A-bomb project for the kids science fair was ruined by the DOE not letting me take the secret plans home from work.

  19. Re:Flamebait by Anonymous Coward · · Score: 2, Informative

    The research existed, Cerf had access to it, but they didn't allow it to be used.

    The research would not have existed if not for the NSA. So how might TCP/IP have been secure from the start if not for them?

  20. Re:Whenever I hear anti-NSA rhetoric... by mi · · Score: 2

    The difference is that Station X weren't intercepting British communications and spying on what people said to the butcher.

    Only because they could not.

    While we're at it MI5 didn't torture people and then lie to Parliament about it.

    NSA has not tortured any one either.

    --
    In Soviet Washington the swamp drains you.
  21. Re:Whenever I hear anti-NSA rhetoric... by AHuxley · · Score: 2

    Re Would Mr. Snowden receive the same respect and adoration
    Yes as US gov protections in place for just such legal events eg safe from US gov surveillance without a warrant.
    If you see the US Constitution protections been removed via color of law efforts you have the duty, right and responsibility to bring such facts to the US publics attention.
    The US political and legal system can then correct the legal issues.
    The US legal issues raised by Snowden are easy to understand in an open court by most legal professionals and the wider public.
    http://www.freedomwatchusa.org...
    Months after Snowden US warrantless reality is uncovered:
    "NSA performed warrantless searches on Americans' calls and emails – Clapper" (2 April 2014)
    http://www.theguardian.com/wor...
    The main issue for "understanding" is that the entire US copper and optical telco hardware is surveillance friendly.
    Another issue for "understanding" is that the entire US copper and optical telco software layer is surveillance friendly.
    Another issue for "understanding" is that encryption standards are junk - the US gov gets back to plain text, ex staff get back too, other countries get back to plain text, so can their ex staff and people who can pay them...
    People are finally understanding the entire structure of their telecommunications network is really like "ENIGMA" version 10? 50? in the 1960,1970, 1980, 1900's --2000 and beyond. Lots of new fancy digital "rotors" to sell but its all back to plain text in real time over decades.
    So today people are finally looking at the origins of TCP/IP and wondering how it was shaped, set as a standard and promoted.
    Expect skilled academics to start going over ever historic telco layer and many common encryption standard too.

    --
    Domestic spying is now "Benign Information Gathering"
  22. Re:Whenever I hear anti-NSA rhetoric... by mi · · Score: 2

    Yes as US gov protections in place for just such legal events eg safe from US gov surveillance without a warrant.

    Snowden's published revelations cover much more than (admittedly reprehensible) warrantless spying on US citizens. For example, he revealed NSA's capability to record all telephone traffic of a foreign country.

    Anyone alerting the Germans in 1943, that Enigma is compromised, would've been (justly) denounced as a traitor... What changed?

    --
    In Soviet Washington the swamp drains you.
  23. Good lord, the logic by AdamWill · · Score: 2

    Wow, it's always a tough competition, but this may win "Ridiculous Slashdot Headline Of The Week".

    Logic 101, folks. Let's recap that headline:

    "TCP/IP Might Have Been Secure From the Start If Not For the NSA"

    Now, what's the story here? One of TCP/IP's designers had access to some then-bleeding-edge crypto *that was part of an NSA project*, but couldn't include it in TCP/IP because it was secret.

    Now, can we support the idea that "if not for the NSA" that crypto could have gone into TCP/IP? No, because "if not for the NSA" that crypto *wouldn't have fucking existed at all*. The NSA wrote it. So the choices are "code written, but not available for use" or "code not written at all". Practical difference for the purposes of TCP/IP: zip.

  24. Re:Flamebait by PuckSR · · Score: 2

    Bad analogy.

    The NSA didn't tell Cerf not to use this cryptography scheme. Cerf didn't even ask. He was working on a classified research project(NSA cryptography) and working on a unclassified academic experiment(TCP/IP).

    I keep fish as a hobby. I have a friend who researches new antibiotics. Do you think my friend's employer is "standing in the way" when he doesn't give me the latest and most potent antibiotics which aren't even publicly available to treat my fish?

  25. Re:Flamebait by amck · · Score: 2

    The NSA has two conflicting tasks:
    (1) Secure national communications.
    (2) Break other countries communications.

    This made sense in the 1950s when secure encryption was something only the military, spies, etc used. It breaks down badly in the internet, international era.

    "They declined to help" hides the fact that _that was their job_. They are the national, even world experts on the problem, and they stood back
    and allowed a broken internet security model. Elsewhere, they've made swiss cheese of encryption standards so they could continue to do (2),
    at the cost of (1).

    The NSA is Broken As Designed and needs to be scrapped.

    --
    Anyone who believes exponential growth can go on forever in a finite world is either a madman or an economist
  26. Adopton would have been far slower, too. by Ungrounded+Lightning · · Score: 2

    If TCP/IP had included crypto, we'd all be using IPX now days...

    The reason TCP/IP proliferated was because it was light-weight and easy to implement. Crypto would have killed that.

    There would have been more resistance to adopting it, too.

    As it was, there was substantial resistance among people and institutions sited outside the US, because the Internet was a DARPA project, i.e. U.S. Military. Other countries, organizations within them, and even some people in the US, were concerned about things like what the US might be building in - like interception and backdoors for espionage and sabotage - or just because "Military! Bad!". Including encryption from the then officially nonexistent, deepest secret, communications spy agency would have boosted that resistance substantially.

    --
    Bantam Dominique roosters crow a four-note song. Once you've heard it as "Happy BIRTHday" you can't NOT hear it that way
  27. Re:It would have been insecure anyway by Lonewolf666 · · Score: 2

    Also, even a DH key exchange without any public key authentication at all is still somewhat effective: Yes, it can be MITMed with ease, but such an attack is also very detectable if you have a side channel, which means any untargetted mass-monitoring operations would be swiftly noticed.

    Perhaps a stupid question (not a crypto expert here), but if you have a not-easily-MITMed side channel, wouldn't you use that for key exchange? Or at least to verify the keys?

    --
    C - the footgun of programming languages
  28. Re:It would have been insecure anyway by SuricouRaven · · Score: 2

    If you have the channel, yes. But in most situations, you don't.

    Researchers or activists trying to detect censorship efforts do. It wouldn't take many people running checks to notice.