|
|
How is NSA breaking so much crypto? - TechAmok
How is NSA breaking so much crypto? - [security]
09:02 AM EDT - Oct,18 2015 - post a comment There have been rumors for years that the NSA can decrypt a significant fraction of encrypted Internet traffic. In 2012, James Bamford published an article quoting anonymous former NSA officials stating that the agency had achieved a 'computing breakthrough' that gave them 'the ability to crack current public encryption.' The Snowden documents also hint at some extraordinary capabilities: they show that NSA has built extensive infrastructure to intercept and decrypt VPN traffic and suggest that the agency can decrypt at least some HTTPS and SSH connections on demand. However, the documents do not explain how these breakthroughs work.
The key is, somewhat ironically, Diffie-Hellman key exchange, an algorithm that we and many others have advocated as a defense against mass surveillance. Diffie-Hellman is a cornerstone of modern cryptography used for VPNs, HTTPS websites, email, and many other protocols. Our paper shows that, through a confluence of number theory and bad implementation choices, many real-world users of Diffie-Hellman are likely vulnerable to state-level attackers.
For the nerds in the audience, here's what's wrong: If a client and server are speaking Diffie-Hellman, they first need to agree on a large prime number with a particular form. There seemed to be no reason why everyone couldn't just use the same prime, and, in fact, many applications tend to use standardized or hard-coded primes. But there was a very important detail that got lost in translation between the mathematicians and the practitioners: an adversary can perform a single enormous computation to “crack” a particular prime, then easily break any individual connection that uses that prime.
How enormous a computation, you ask? Possibly a technical feat on a scale (relative to the state of computing at the time) not seen since the Enigma cryptanalysis during World War II. Even estimating the difficulty is tricky, due to the complexity of the algorithm involved, but our paper gives some conservative estimates. For the most common strength of Diffie-Hellman (1024 bits), it would cost a few hundred million dollars to build a machine, based on special purpose hardware, that would be able to crack one Diffie-Hellman prime every year.
Would this be worth it for an intelligence agency? Since a handful of primes are so widely reused, the payoff, in terms of connections they could decrypt, would be enormous. Breaking a single, common 1024-bit prime would allow NSA to passively decrypt connections to two-thirds of VPNs and a quarter of all SSH servers globally. Breaking a second 1024-bit prime would allow passive eavesdropping on connections to nearly 20% of the top million HTTPS websites. In other words, a one-time investment in massive computation would make it possible to eavesdrop on trillions of encrypted connections.
|
|
Add your comment (free registrationrequired)
Short overview of recent news articles |
|
Sep,11 2025 What's the AMD Alternative to an RTX 5070? Sep,10 2025 Apple got my wife, they might get me next... Sep,09 2025 Which Phone Has The Fastest Wi-Fi 7? Sep,09 2025 Apple Event - September 9 Sep,08 2025 Ferrari F430 *MANUAL* with TUBI EXHAUST SCREAMING on the AUTOBAHN! Sep,08 2025 AMD Adrenalin 25.9.1 Driver Sep,08 2025 Google Brings AI Text Tools to its Keyboard Sep,06 2025 The Fastest Lap In F1 History: Max Verstappen's Pole Lap | 2025 Sep,06 2025 You can't download and install Windows 11 25H2 yet as Microsoft Sep,04 2025 A House of Dynamite - Official Teaser (2025) Rebecca Ferguson, Greta Sep,04 2025 RTX 5060 Ti 16GB + Ryzen 5 5600 : Test in 17 Games Sep,02 2025 BUGONIA Trailer 2 (2025) Emma Stone, Jesse Plemons Sep,02 2025 Huawei unveils world-leading AI supercharged hard drive to power Sep,01 2025 AM4 Lives: AMD Ryzen 5 5500X3D CPU Review & Benchmarks Aug,29 2025 I was wrong, iPhone IS better than Android...- 30 Day iPhone Aug,29 2025 303KM/H BMW X5 M50i GPOWER SOUNDS LIKE THUNDER Aug,29 2025 NVIDIA GeForce 581.15 WHQL drivers Aug,28 2025 Apple Intelligence vs Galaxy AI / Google Pixel AI / Xiaomi HyperAI - Aug,28 2025 The Woman in Cabin 10 - Official Trailer Aug,28 2025 YANGWANG U9 Breaks Global EV Top Speed Record Aug,26 2025 AMD B850 Motherboard Roundup: Sub $200 Models Aug,25 2025 Gamers Nexus: Our Channel Could Be Deleted Aug,24 2025 2025 Audi A5 E-Hybrid 299HP "250KMH is back!!" // REVIEW on Aug,23 2025 I Can't Stop You From Buying This... But I'll Try - GeForce RTX Aug,23 2025 NVIDIA GeForce 581.08 WHQL Driver Aug,21 2025 Murcielago with flames chasing an F1 car on highway (2025) Aug,18 2025 Windows 11 24H2 Security Update Causes SSD/HDD Failures and Aug,17 2025 Samsung Galaxy Z Fold 7 - Tips, Tricks & Hidden Features! Aug,17 2025 500Hz OLEDs are Awesome - Gigabyte AORUS FO27Q5P Review Aug,17 2025 They Said my Gaming & Badminton Club Would Never OPEN! Aug,13 2025 NVIDIA GeForce Game Ready 580.97 WHQL Driver Aug,13 2025 When your Bro needs a new computer... Aug,12 2025 WhatsApp's latest update is a huge "convenience" for group chats Aug,12 2025 COLLAPSE: Intel is Falling Apart Aug,11 2025 Useless or Genius: NVMe SSD Coolers Aug,11 2025 2025 NEW! Audi A6 3.0 TFSI - BETTER than BMW 5? / Aug,10 2025 Ryzen 7 5800X3D vs. 9800X3D, Battlefield 6 Open Beta Benchmark Aug,10 2025 How to Enter BIOS from Windows Using CMD | Easiest Method (No Key Aug,09 2025 Battlefield 6 Open Beta Benchmark: 9800X3D vs. 9700X vs. 265K Aug,09 2025 WhatsApp finally adds a useful photo feature for Android users
>> News Archive <<
| |
|
