Cryptanalysis

Cryptanalysis is the science that studies how to break ciphers, and so it is as ancient as cryptography. Each time a new cipher is developed new strategies are researched to break it and the success of such attempts determines the strenght of the ciphers itself.

Among the first ciphers used by man we have substiution ciphers: it falls in this category every encryption system which encodes a message using a rule to substitute the symbols in the text. An example is the Caesar cipher, developed by Caesar himself during the Gallic war, in which each letter is substiuted by the third following letter in the alphabet. Further refinements of this method include monoalphabetic and polyalphabetic ciphers in which a permutation (or several different) of the whole alphabet is used. Such ciphers were widely used from medieval times up to the beginning of 20th century, especially the "Vigenère chiffre", called the unbreakable cipher.

Substitution ciphers and their variants were largely abandoned in the last century due to their weakness to cryptanalysis and replaced by block ciphers. In fact they are vulnerable to frequency analysis which studies the number of occurrences of symbols and certain patterns to decrpyt the hidden text. This can be carried out in a really fast way nowadays using computers.

In the IT projects section I present a fast algorithm to decrypt monoalphabetic ciphers using a modern computer: by "fast" I mean that it can recover the 99.9% of the original, one-page long text in less than 0.4 seconds on an average computer.

Nowadays ciphers, such as RSA, are either symmetric or asymmetric depending on the applications and expolit the computational complexity of factorizing large numbers. In fact they choose very large prime numbers to genrate key pairs but the attacker cannot recover such keys without the original primes pair and determining whether a large number is prime or not has exponential complexity and no fast algorithm for it is known.

The Pirate Bay case: regime is coming (?)

Link to the Pirate Bay blog entry about italian censorship on internet and how their tracker has been tried to be blocked.
If you can't access the site is likely to be due to filters set by your ISP (Internet Service Provider) ; in that case just switch the DNS servers that resolve internet addresses for you, for example using Open DNS .

http://thepiratebay.org/blog/123

EDIT 22/8/08:

It is acknowledged by many sources that the page where Italian users of piratebay were and still are redirected by the filters imposed by the Guardia di Finanza is NOT managed by the police itself nor by italian people but it is registered to Pro-music.org , a coalition of lobbies in the music sector .
It is fairly clear that Pro-music is filing piratebay users: they can know their IP addresses when they display the page, and if cooperating with the police they could obtain names and surnames of the people to whom those IPs were assigned.
So, why the police is giving to "international alliances of musicians, performers, managers, artists, major and independent record companies and retailers" the names of people in order to privately sue them?

Proofs of this fact could be found days ago with any reverse DNS service at the address of the page displaying the Guardia di Finanza message about the confiscation of the site: 217.144.82.26 (e.g. type nslookup 217.144.82.26 in your command prompt under windows). Some day ago that address resolved to "Pro-music.org", until someone noticed it and modified the resolved name to "localhost". (localhost (meaning "this computer") is the standard hostname given to the address of the loopback network interface)

EDIT 13/8/08 :

Repubblica.it article in which it is explained that PirateBay was blackened out on behalf of a "preemptive confiscation", applied via blacklisting in the ISP's DNS servers piratebay's IP addresses . Many consumer associations are worried about the consequences of this act, that can lead to the legal block of other information sites (e.g. Google News or any newspaper at wish)
http://www.repubblica.it/2007/09/sezioni/scienza_e_tecnologia/musica-digitale/pirate-bay/pirate-bay.html

Moreover, the restriction on piratebay is applied to all the mirrors (such as labaia.org) and the IP addresses that after redirection will eventually lead to the domain as well.
So if you experience troubles in using the tracker (mind that downloading copyrighted files is illegal) even if you switched your DNS, use internet traffic encryption and diversion through proxies (Tor recommended).

Current status:
Open DNS = work, just yesterday a problem with searches occurred, had to use Tor
Alice DNS = seem to work, don't know how long it will take until they discover piratebay changed IP

Galileo

On april 27th the Giove-B satellite has been launched. Giove-B is the second satellite in orbit for the EU satellite navigation system Galileo that is expected to be ready by 2013.

Galileo is a new global navigation satellite system entirely financed by the European Union to be a civilian alternative to american militar GPS. The advages of having a civilian GPS are several: firstly, the US may reintroduce at their wish the random error in atomic clock data that made GPS unavailable for civilian purposes before year 2000. In fact, without a way of discarding this error the precision of the system dramatically drops to kilometers instead of meters. Then a completely nonmilitary architecture can guarantee a precision which is greater than the one currently granted by the open part of GPS with a relevant influence in sectors as flight automatic navigation, prevention of car incidents, etc

Check the wikipedia entry for more information: http://en.wikipedia.org/wiki/Galileo_%28satellite_navigation%29

Codename Echelon

The first post of this blog is devoted to the great mirage of espionage: Echelon.
What is Echelon?
Echelon is or it means to be the Big Brother of telecommunications, an eavesdropping network capable of hearing any data transmission in the world.

Echelon is powered by the NSA (National Security Agency) with the explicit cooperation of Canada, UK, New Zealand, Australia. (the UKUSA alliance)

Echelon's purpose is to grant international security against possible threats such as terrorism by making network traffic analyzed by its cluster to find "sensitive words".
Let's clear the first point: we aren't in a James Bond movie! A worldwide surveillance network is just awfully hard to be accomplished and it is an impossible hope to spy all the telecommunications in the world. First of all because tha UKUSA alliance is formed just by 5 countries and there are many others that are not willing at all to cooperate. Moreover short -range cannot be intercepted unless you're in range! For example a standard Bluetooth antenna has a 10m range so to intercept its transmissions you must be within 10m from the source! So don't worry unless you see guys wearing dark suits, dark glasses, and (possibly dark :-) ) earphones. (Beware of goths as well, they might be secret agents!)

Besides, it's true and proved that the coalition of spies controls many strategic points such as landing points for oceanic fibre optics backbones, and nevertheless satellites. In fact they're virtually able to intecept any communication to and fro satellites.
Have you ever been curious about that sort of baloons in military stations?
Well, they're called radomes and their purpose is to hide the orientation of the underlying antennas; knowing that one can track down which satellite is currently monitored.

The European Parliament disposed a committee on Echelon and, in a nutshell, concluded (you can read the report somewhere on the net) that a global control of communications is a crazy idea but something smaller can be actually carried on.

Echelon stations:
USA: Yakima, Sugare Grove, Ft. Meade (quartier generale NSA)
Europe: Morwenstow (UK), Mentwith Hill (UK), Bad Aibling (D), Griesheim (D)
Oceania: Pine Gap, Kojarena, Waihopai
Asia: Misawa

This is a photo shot by me of the Morwenstow facility, which is after all small... as you see there are few radoms, while the other antennas should be directed toward Intelsat satellites over the Atlantic and Indian Ocean.



Hint: use cryptography to hide sensitive information!