How The NSA Can Read Your Emails

Since [Snowden]’s release of thousands of classified documents in 2013, one question has tugged at the minds of security researchers: how, exactly, did the NSA apparently intercept VPN traffic, and decrypt SSH and HTTP, allowing the NSA to read millions of personal, private emails from persons around the globe? Every guess is invariably speculation, but a paper presented at the ACM Conference on Computer and Communications Security might shed some light on how the NSA appears to have broken some of the most widespread encryption used on the Internet (PDF).

The relevant encryption discussed in the paper is Diffie–Hellman key exchange (D-H), the encryption used for HTTPS, SSH, and VPN. D-H relies on a shared very large prime number. By performing many, many computations, an attacker could pre-compute a ‘crack’ on an individual prime number, then apply a relatively small computation to decrypt any individual message that uses that prime number. If all applications used a different prime number, this wouldn’t be a problem. This is the difference between cryptography theory and practice; 92% of the top 1 Million Alexa HTTPS domains use the same two prime numbers for D-H. An attacker could pre-compute a crack on those two prime numbers and consequently be able to read nearly all Internet traffic through those servers.

This sort of attack was discussed last spring by the usual security researchers, and in that time the researchers behind the paper have been hard at work. The earlier discussion focused on 512-bit D-H primes and the LogJam exploit. Since then, the researchers have focused on the possibility of cracking longer 768- and 1024-bit D-H primes. They conclude that someone with the resources of cracking a single 1024-bit prime would allow an attacker to decrypt 66% of IPsec VPNs and 26% of SSH servers.

There is a bright side to this revelation: the ability to pre-compute the ‘crack’ on these longer primes is a capability that can only be attained by nation states as it’s on a scale that has been compared to cracking Enigma during WWII. The hardware alone to accomplish this would cost millions of dollars, and although this computation could be done faster with dedicated ASICs or other specialized hardware, this too would require an enormous outlay of cash. The downside to this observation is, of course, the capability to decrypt the most prevalent encryption protocols may be in the hands of our governments. This includes the NSA, China, and anyone else with hundreds of millions of dollars to throw at a black project.

VCF East: PR1ME And AT&T Unix Boxes

unix

At the Vintage Computer Festival last weekend, there was a wonderful representation of small 8 and 16-bit home computers from the 80s, an awful lot of PDP and VAX-based minicomputers, and even some very big iron in the form of a UNIVAC and a Cray. You might think this is a good representation of computing history, but there was actually a huge gap in the historical reality. Namely, workstations and minicomputers that weren’t made by DEC.

[Ian Primus] was one of the very few people to recognize this shortcoming and brought his PRIME minicomputer. This was a huge, “two half racks, side by side” computer running PRIMOS, an operating system written in FORTRAN. Of course this made it extremely popular with engineering teams, but that doesn’t mean [Ian] can’t have fun with it. He had two terminals set up, one running Dungeon (i.e. Zork pre-Infocom) and a text-based lunar lander game.

Because the VCF East is held in New Jersey, it’s probably no surprise a few vintage AT&T Unix boxes showed up. [Anthony Stramaglia] brought in a few very cool vintage Unix workstations, dating from the early to mid 80s. In the video, he shows off two AT&T boxes. The first is a UNIX PC, containing a 68010 clocked at a blistering 10 MHz. Next up is the UNIX PC’s bigger brother, the 3B2 400. This is the workstation found on just about every desk at Bell Labs in the 80s, meaning this is the same computer [Ken Thompson] and [Dennis Ritchie] used for their work on UNIX.

 

Continue reading “VCF East: PR1ME And AT&T Unix Boxes”