Stopwatch

Berkeley Student Takes 3.5 Hours to Crack RSA 40-bit Key


Ian Goldberg at UCB cracked an RSA-40 challenge cryptogram in only 3.5 hours. 40 bit key technology, the size cracked by Goldberg, is the maximum exportable length allowed by US law... until recently.

The speed at which this crack was done gives you license to laugh at the Clinton Administration's crypto policy, if you weren't already. Try it:

Ha ha ha. Ha ha ha.

Careful, don't lose your lunch. It's not that funny.

This comes to you courtesy of the Privacy Digest, via the Telecom digest. 

PRIVACY Forum Digest      Monday, 10 February 1997      Volume 06 : Issue 03


            Moderated by Lauren Weinstein (lauren@vortex.com)         
              Vortex Technology, Woodland Hills, CA, U.S.A.
	
                       ===== PRIVACY FORUM =====              


    -------------------------------------------------------------------
               The PRIVACY Forum is supported in part by the          
                 ACM (Association for Computing Machinery)
	         Committee on Computers and Public Policy,      
          "internetMCI" (a service of the Data Services Division         
      of MCI Telecommunications Corporation), and Cisco Systems, Inc.
                                 - - -
             These organizations do not operate or control the     
          PRIVACY Forum in any manner, and their support does not
           imply agreement on their part with nor responsibility   
        for any materials posted on or related to the PRIVACY Forum.
    -------------------------------------------------------------------

Date: Thu, 30 Jan 1997 12:59:35 -0800
From: John van Heteren
Subject: Berkeley Student Takes 3.5 Hours to Crack RSA 40-bit Key

[ From TELECOM Digest; Volume 17 : Issue 26 -- MODERATOR ]

Thought you'd be interested in the following article that I found at: http://www.urel.berkeley.edu/releases/ This URL doesn't work, ergo no hyperlink--@Man

John van Heteren
vanhet@sirius.com

Berkeley -- It took UC Berkeley graduate student Ian Goldberg only three and a half hours to crack the most secure level of encryption that the federal government allows U.S. companies to export.

Yesterday (1/28) RSA Data Security Inc. challenged the world to decipher a message encrypted with its RC5 symmetric stream cipher, using a 40-bit key, the longest keysize allowed for export. RSA offered a $1,000 reward, designed to stimulate research and practical experience with the security of today's codes.

Goldberg succeeded a mere 3 1/2 hours after the contest began, which provides very strong evidence that 40-bit ciphers are totally unsuitable for practical security.

"This is the final proof of what we've known for years: 40-bit encryption technology is obsolete," Goldberg said.

RSA's RC5 cipher can however be used with longer keysizes, ranging from 40 to 2,048 bits, to provide increasing levels of security.

U.S. export restrictions have limited the deployment of technology that could greatly strengthen security on the Internet, often affecting both foreign and domestic users, Goldberg said.

"We know how to build strong encryption; the government just won't let us deploy it. We need strong encryption to uphold privacy, maintain security, and support commerce on the Internet -- these export restrictions on cryptography must be lifted, " he said.

Fittingly, when Goldberg finally unscrambled the challenge message, it read: "This is why you should use a longer key."

The number of bits in a cipher is an indication of the maximum level of security the cipher can provide, Goldberg said. Each additional bit doubles the potential security level of the cipher. A recent panel of experts recommended using 90-bit ciphers, and 128-bit ciphers are commonly used throughout the world, but U.S. government regulations restrict exportable U.S. products to a mere 40 bits.

Goldberg used UC Berkeley's Network of Workstations (NOW) to harness the computational resources of about 250 idle machines. This allowed him to test 100 billion possible "keys" per hour -- analogous to safecracking by trying every possible combination at high speed. This amount of computing power is available with little overhead cost to students and employees at many large educational institutions and corporations.

Goldberg is a founding member of the ISAAC computer security research group at UC Berkeley, which is led by assistant professor of computer science Eric Brewer. In the fall of 1995 the ISAAC group made headlines by revealing a major security flaw in Netscape's web browser.

@Man, World-Class Data Snuggler / First Interskate Productions / atman@ecst.csuchico.edu

Back to @Man's Homepage