TwitterFacebook

MIT News: Encryption Is Less Secure Than We Thought

Technology • Views: 20,783

The problem, Médard explains, is that information-theoretic analyses of secure systems have generally used the wrong notion of entropy. They relied on so-called Shannon entropy, named after the founder of information theory, Claude Shannon, who taught at MIT from 1956 to 1978.

Shannon entropy is based on the average probability that a given string of bits will occur in a particular type of digital file. In a general-purpose communications system, that’s the right type of entropy to use, because the characteristics of the data traffic will quickly converge to the statistical averages. Although Shannon’s seminal 1948 paper dealt with cryptography, it was primarily concerned with communication, and it used the same measure of entropy in both discussions.

But in cryptography, the real concern isn’t with the average case but with the worst case. A codebreaker needs only one reliable correlation between the encrypted and unencrypted versions of a file in order to begin to deduce further correlations. In the years since Shannon’s paper, information theorists have developed other notions of entropy, some of which give greater weight to improbable outcomes. Those, it turns out, offer a more accurate picture of the problem of codebreaking.

When Médard, Duffy and their students used these alternate measures of entropy, they found that slight deviations from perfect uniformity in source files, which seemed trivial in the light of Shannon entropy, suddenly loomed much larger. The upshot is that a computer turned loose to simply guess correlations between the encrypted and unencrypted versions of a file would make headway much faster than previously expected.

“It’s still exponentially hard, but it’s exponentially easier than we thought,” Duffy says. One implication is that an attacker who simply relied on the frequencies with which letters occur in English words could probably guess a user-selected password much more quickly than was previously thought. “Attackers often use graphics processors to distribute the problem,” Duffy says. “You’d be surprised at how quickly you can guess stuff.”

More: Encryption Is Less Secure Than We Thought - MIT News Office

^ back to top ^

TwitterFacebook

Turn off all ads for a full year by subscribing!
For about 33 cents a day (per month) or 22 cents a day (per year), our subscription option turns off all advertisements at LGF!
Read more...

► LGF Headlines

  • Loading...

► Tweeted Articles

  • Loading...

► Tweeted Pages

  • Loading...

► Top 10 Comments

  • Loading...

► Bottom Comments

  • Loading...

► Recent Comments

  • Loading...

► Tools/Info

► Tag Cloud

► Contact

You must have Javascript enabled to use the contact form.
Your email:

Subject:

Message:


Messages may be published unless you request otherwise.
Tech Note:
Using the Contact Form
LGF Pages

This button leads to the main index of LGF Pages, our user-submitted articles. You can post your own LGF Pages simply by registering a free account with us.

Create a Page

This is the LGF Pages posting bookmarklet. To use it, drag this button to your browser's bookmark bar, and title it 'LGF Pages' (or whatever you like). Then browse to a site you want to post, select some text on the page to use for a quote, click the bookmarklet, and the Pages posting window will appear with the title, text, and any embedded video or audio files already filled in, ready to go.

Or... you can just click this button to open the Pages posting window right away.

Last updated: 2014-03-07 2:19 pm PST

LGF User's Guide
Recent Pages
Randall Gross
SeaWorld Pulls Staff From Water in Killer Whale Shows
SeaWorld Entertainment will end the practice of having trainers in the water during killer whale shows, reported WTVJ-TV in Miami. After a trainer died in 2010 during a show with a killer whale, the Occupational Safety and Health Administration ...

12 hours, 17 minutes ago
Views: 169 • Comments: 1
Tweets: 0 • Rating: 0
FemNaziBitch
New York City Will Pay $10 Million to Settle Wrongful Conviction Case - ProPublica
New York City has agreed to pay $10 million to settle a wrongful conviction lawsuit filed by Jabbar Collins, who spent 15 years in prison for a murder he did not commit. The settlement announced today concludes a decades-long ...

17 hours, 4 minutes ago
Views: 145 • Comments: 0
Tweets: 1 • Rating: 1
CriticalDragon1177
The Japan Times - Can Japan show the West how to live peacefully with Islam?
Nicolas Gattig on Islam in Japan. Off course ignorant Islamophobic wingnut Bryan Fischer Is happy they "don't" allow Muslims in Japan. Man is he going to be upset if he reads this. Long ago, in another life, I went to ...

2 days, 10 hours ago
Views: 454 • Comments: 3
Tweets: 3 • Rating: 4
Rightwingconspirator
Photography Is Not A Crime
re: #274 NJDhockeyfan re: #262 NJDhockeyfan re: #259 jaunte So lets keep this in mind for Ferguson-Shoot an unarmed man in the head under color of authority and leave town with your identity protected. Take a picture of a protest, ...

2 days, 11 hours ago
Views: 271 • Comments: 0
Tweets: 0 • Rating: 1
Laughing Gas
Scumbag “HBD believer” claims Michael Brown charged officer
WARNING: LINK TO HATE SITE He links to some ijreview, a right wing site: This guy makes me sick.

2 days, 13 hours ago
Views: 569 • Comments: 6
Tweets: 1 • Rating: 0
BadExampleMan
“Growth” and Some Jellyfish
This piece was basically just to use up some scraps I had sitting around. I liked the way the frit lace turned out but I didn't really have a use for it. I've been on a jellyfish kick lately. This ...

6 days, 3 hours ago
Views: 314 • Comments: 0
Tweets: 1 • Rating: 2
Pie-onist Overlord
Police Investigating Whether Rabbi’s Miami Killing a Hate Crime
More: Police Investigating Whether Rabbi's Miami Killing a Hate Crime (Reuters) - Police in Miami investigating the killing of a 60-year-old Orthodox rabbi over the weekend said on Monday they haven't yet decided whether the shooting was a hate crime. ...

1 week, 2 days ago
Views: 549 • Comments: 0
Tweets: 1 • Rating: 1
Romantic Heretic
The War Photo No One Would Publish
An interesting story on a photograph taken during Desert Storm that no news outlet in the US would publish. It is one of those photos that stares straight at the horror of war. It's hideous, stomach turning...and something that should ...

1 week, 4 days ago
Views: 1,296 • Comments: 8
Tweets: 4 • Rating: 7
Bubblehead II
Live web Cams on Oahu, Hawaii
Couple of live web cams for Oahu. H/T to explore.org Turtle Bay - East and Ehukai Beach, Oahu Sunrise isn't for a couple more hours so there isn't much to see. But should get interesting after daybreak.

1 week, 6 days ago
Views: 706 • Comments: 0
Tweets: 3 • Rating: 5
 Frank says:

Gee, it's so hard to find a place to park around here.